Computer Forenics firm's db hacked...

DarklyWise

Good read - when the 'experts' are had:

http://www.computerworld.com/newsletter/0,4902,107265,00.html?nlid=AM

Find more posts tagged with

SAVE $250 on Your Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View Boot Camps

Comments

kalebksp

They had the CVV numbers stored too? Supposedly it is against VISA's policy for merchants to store those.

keatron

Keep in mind they are known mostly for Encase and their expertise in forensics. They are not that highly regarded as far as security in general. So they might not be the best guys to protect your system, but they're the best for telling you what happened after you were hit. I was involved in two court cases this year (I know that's not much), but I can tell you that they are un-matched as far as court track records. It would be interesting to see who does the forensics work for them in this case. I doubt they'll be allowed to do it themselves.

RussS

What a load of crap

The database did not contain any customer financial data that could put them at risk of identify theft, he said.

Who cares? If the hacker has the card numbers and the verification numbers they could spend up large so who cares about the identity?
Shoot, you create a new card with a different name and if the card is not on the stolen list you can use it big-time until it is listed.

Looks like a good case of "Do as I say and not as I do" from those clowns - I should think this will impact on their business significantly.