Following attacks on Gawker, Walgreens and McDonalds, it seems hackers have set their eyes on a new target: Santa!
Reports from the North Pole have confirmed that Santa’s Naughty/Nice list has been compromised.
The list is said to contain the name, stocking address and naughty/nice score (the child equivalent of a credit score) of every child on earth. Absent from the leaked data is the “What I want for Christmas” list which is said to be stored in a separate database.
While St. Nick is not commenting on how the leak occurred, an insider elf mentioned a spear phishing campaign a few days ago promising milk and cookies after logging in to a suspicious site.
In the meantime, Santa is asking children to reset the password on their stockings. Santa’s workshop has also set up a hotline for children who get coal in their stockings on Christmas day due to any mix up.
This attack and others are a reminder to all that sending spam will land you on the naughty list, even if you manage to get a copy of that list.
Hat tip: Thanks to SophosLabs researcher Tareq Alkhatib for bringing this breaking news story to our attention.
Related Posts
- University of North Florida breach exposes data on 107,000 individuals
The University of North Florida has notified about 107,000 current and prospective students of the compromise of their personal information after a server containing the data was recently discovered t... - WordPress Hacked, Source Code Stolen
Servers belonging to Automattic, which makes the popular Wordpress blogging software, say that their servers were hacked and that the company's source code is believed to have been "exposed and copied... - Global Spam Botnet Tracking Report (first quarter 2011)
The following data are the result of the monitoring and recording process made by spam sensors spread all around the world to provide the trend of security in terms of compromised systems. Spam sensor... - Using Twitter for Public Relations During a Data Breach Incident
Data breaches happen to organizations of all shapes and sizes. A critical aspect of such security incidents is the manner in which the company handles public relations (PR), keeping affected customer... - From XSS to root: Lessons Learned From a Security Breach
In an excellent blog, the people from Apache did a very good job analyzing and documenting how a security breach happened–going through all the stages of the attack and drawing conclusions. Shou... - Plentyoffish attacked by least anonymous hackers ever, user data compromised (Digital Trends)
Digital Trends - Online dating site Plentyoffish.com suffered a cyber-attack last week that compromised the usersâ passwords, usernames and email addresses, according to a blog post by Plentyoffish... - Security Breach – The Day Of The Triffids – Day One Preview – BBC One
CSA DISCLAIMER: This video taken from YouTube. As well as any other video found on this site is not hosted here, it just embedded, and it taken randomly by our system from video hosting services lik... - Quake 4 Level 29 Data Network Security
CSA DISCLAIMER: This video taken from YouTube. As well as any other video found on this site is not hosted here, it just embedded, and it taken randomly by our system from video hosting services lik... - Data Security Wrap-up 2009
CSA DISCLAIMER: This video taken from YouTube. As well as any other video found on this site is not hosted here, it just embedded, and it taken randomly by our system from video hosting services lik... - Could a Data Breach Actually Help the Affected Brand?
Security professionals often use the fear of brand tarnishing as an argument for information security spending. The idea is that if a data breach occurs, customers will lose trust and leave; the valua...
Posted on 28 December 2010. Tags: Breach, compromised, Data, List, Naughty/Nice, North, Pole, Santa's, Security
