Skip to main content

Web.com hit by credit card breach

Another Internet company Web.com credit card security breach. When you're online, you will never be secure no matter what their public relation tells you. Keep in mind "Security is a process, not a product", continuous security awareness and training will help you minimize risks.

Though I commend their security monitoring team to find out about the breach on it's early stage.

"On August 13, 2015, Web.com discovered an unauthorized breach of one of our computer 93,000 customers (of the company's over 3.3 million customers) may have been compromised. The company quickly uncovered the unauthorized activity as part of its ongoing security monitoring, shut down the access, and immediately began working with a leading IT security firm to conduct a thorough investigation. We have reported the attack to credit card processors and the proper federal and state authorities. Affected customers have received an email from the company notifying them that their credit card information has been compromised and explaining the steps they must take. A letter, sent via the US Postal Service, will follow in the next few days.
systems. As the result of this attack, the credit card information of approximately 
Web.com will provide one-year of free credit monitoring for all customers who have been impacted by this incident." (2015 August 20, Web.com)

By the way, who's accepting "cash payment" to register a domain name or website services? Anyone knows?

This post is sponsored by Moscom.comNeedName.com and DomainString.com
Source: KING.NET

Comments

Popular posts from this blog

Alternative Social Networks

If you are planning to create your  social network  e.g. similar to Facebook. Here's a short list of alternative software's: Open Source and Free​ http://buddypress.org/  - Wordpress (Open Source and Free) http://elgg.org/  - (Open Source and Free) Commercial Social Networks software http://www.socialengine.com/  ($299 Stand Alone, $29/mo Cloud) http://www.jomsocial.com/  (run with Joomla, need to know CMS) http://www.boonex.com/  (very expensive, $399 for Standard) http://www.anahitapolis.com/ http://www.oxwall.org/ http://sharetronix.com/ http://www.moosocial.com/ http://www.jcow.net/ http://phpdolphin.com http://www.grou.ps  (from free to Commercial, I left my networks and they are selling it  http://www.phpfox.com/  (I used this before, it's hard to maintain. I moved to NING but left too after it was sold to another company) http://www.ning.com  (I don't recommend using this service, it's hard to export your data when it's time to move) S

Learning Vulnerability Scanning by KING.NET

Learning Vulnerability Scanning is fun and easy. So I hope you enjoy reading this short how to guide on how to use vulnerability scanning to secure your servers and networks. NMAP is the swiss tool that you need to learn if you're serious in Cyber Security profession. The NMAP tool can be use with NSE scripting (Nmap Scripting Engine) to automate your tasks. For example using NSE Script using a  single vulnerability (cold fusion)  to scan our test lab machine. root@kali:~# nmap -v -p 80  --script http-vuln-cve2010-2861  10.11.1.220 Starting Nmap 6.47 ( http://nmap.org ) at 2016-07-22 17:34 EDT NSE: Loaded 1 scripts for scanning. NSE: Script Pre-scanning. Initiating ARP Ping Scan at 17:34 Scanning 10.11.1.220 [1 port] Completed ARP Ping Scan at 17:34, 0.04s elapsed (1 total hosts) Initiating Parallel DNS resolution of 1 host. at 17:34 Completed Parallel DNS resolution of 1 host. at 17:35, 13.01s elapsed Initiating SYN Stealth Scan at 17:35 Scanning 10.11.1.220 [1 port] Comp