The Christmas Eve attack, which resulted in the theft of tens of thousands of credit card numbers and hundreds of thousands of emails, turned out to be the gift that kept on giving for the Anonymous hackers behind the heist. The intruders made sizeable donations to charity using the stolen card numbers, and teamed up with WikiLeaks to publish revealing emails taken from the global affairs firm.
If you thought that Heartland-style mega-breaches were a thing of the past, this incident proved that institutions dealing in credit and debit card information still have plenty to worry about. The breach exposed roughly 1.5 million card numbers, and temporarily knocked the processor out of Payment Card Industry (PCI) compliance.
South Carolina Department of Revenue
As Hurricane Sandy bore down on the Northeast, residents of the Palmetto State were dealing with their own crisis. Overseas hackers raided vulnerable servers to steal the Social Security numbers of 3.6 million people (roughly 80 percent of the state
A mini-trend took shape in the spring when a string of high-profile companies began reporting that user passwords – secured by easily crackable encryption or none at all – had been publicly exposed. In the case of the business social networking site, someone on a Russian forum dumped the credentials of 6.5 million users. Phishing attacks using the stolen information intensified soon after the attack.
Online intruders from a group calling itself The Consortium claimed to have invaded Digital Playground, a California-based erotic site, to make off with 40,000 plain-text credit card numbers, including names, CCV numbers and expiration dates. Earlier in the year, the chat service of the popular YouPorn site was compromised to expose thousands of usernames and email addresses.
AntiSec, a hacktivist group linked to Anonymous, published one million Apple unique device identifier numbers, or UDIDs. The hackers claimed they lifted the data from a file on an FBI laptop, but the Florida-based app developer said the data, which allows for the identification and tracking of devices running on the iOS platform, actually came from its own database.
Hackers breached a server belonging to the online retailer, allowing them access to the personal information of more than 24 million customers. Investigators said the crooks behind the breach harvested names, email addresses, billing and shipping addresses, phone numbers and the last four digits of credit card numbers.
Another password compromise befell a major company. This time Yahoo confirmed that its Contributor Network was raided of the usernames and passcodes of 400,000 members. The concern with any password breach is that most consumers use the same credentials at other sites across the web, so a breach at Yahoo could conceivably unlock the door to another of the victim