Comments on: Hannaford Data Breach is Likely Much Worse Than Reported http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/ tech, science, news and social issues for geeks Tue, 14 Feb 2012 07:53:04 +0000 hourly 1 http://wordpress.org/?v= By: Hannaford Breach Followup: Malware on All of Their Servershttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-55080 Hannaford Breach Followup: Malware on All of Their Servers Tue, 01 Apr 2008 18:06:49 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-55080 [...] your groceries are belong to us.” According to a ComputerWorld article, the Hannaford Breach was not just a single keylogger installed at a critical point in the enterprise. Malware was [...] [...] your groceries are belong to us.” According to a ComputerWorld article, the Hannaford Breach was not just a single keylogger installed at a critical point in the enterprise. Malware was [...]

]]> By: Followup: Hannaford Used Rapid7 for Securityhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51894 Followup: Hannaford Used Rapid7 for Security Wed, 19 Mar 2008 16:01:19 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51894 [...] Brothers Supermarkets didn’t know much about cybersecurity, but then again, most companies don’t.   Companies that don’t use a full-time infosec [...] [...] Brothers Supermarkets didn’t know much about cybersecurity, but then again, most companies don’t.   Companies that don’t use a full-time infosec [...]

]]> By: Tony Lawrencehttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51848 Tony Lawrence Wed, 19 Mar 2008 11:07:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51848 I see Nexpose has already nuked that Google result :-) I see Nexpose has already nuked that Google result :-)

]]> By: Tony Lawrencehttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265412 Tony Lawrence Wed, 19 Mar 2008 11:07:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265412 I see Nexpose has already nuked that Google result :-) I see Nexpose has already nuked that Google result :-)

]]> By: BelchSpeakhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265411 BelchSpeak Wed, 19 Mar 2008 04:55:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265411 This post here by Attrition may warrant its own follow up post tomorrow. Until then enjoy the LULZ. <a href="http://attrition.org/security/rant/z/rapid7.html" rel="nofollow">http://attrition.org/security/rant/z/rapid7.html</a> This post here by Attrition may warrant its own follow up post tomorrow. Until then enjoy the LULZ.

http://attrition.org/security/rant/z/rapid7.html

]]> By: BelchSpeakhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265410 BelchSpeak Wed, 19 Mar 2008 04:47:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265410 Actually, they discovered the breach on the 27th of February, Gins. They reported it 2 and a half weeks later. They realized that it had been going on since the 7th of Dec.As far as doublespeak goes, this is what it means: 2.5 weeks were spent determining their liability and how to continue their business and plug the holes at the same time. This is not so bad- every business has to be able to do this in case it happens. The real question is: Did they have a working plan in place for such a disaster? Probably not, which caused part of the delay in reporting. Actually, they discovered the breach on the 27th of February, Gins. They reported it 2 and a half weeks later. They realized that it had been going on since the 7th of Dec.

As far as doublespeak goes, this is what it means: 2.5 weeks were spent determining their liability and how to continue their business and plug the holes at the same time. This is not so bad- every business has to be able to do this in case it happens. The real question is: Did they have a working plan in place for such a disaster? Probably not, which caused part of the delay in reporting.

]]> By: Kiltakhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51804 Kiltak Wed, 19 Mar 2008 02:34:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51804 There's nothing amusing in this post my friend :) There's nothing amusing in this post my friend :)

]]> By: Kiltakhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265409 Kiltak Wed, 19 Mar 2008 02:34:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265409 There's nothing amusing in this post my friend :) There’s nothing amusing in this post my friend :)

]]> By: Poppyhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265408 Poppy Wed, 19 Mar 2008 02:15:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265408 I am not amused. I am not amused.

]]> By: Ginshttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51772 Gins Tue, 18 Mar 2008 22:53:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51772 They knew didn't contain it for 3 months? What does that mean in doublespeak? GAH that pisses me off....the only reason I have used my card there is when I went to see my daughter and bought her groceries. Def within that time period. They knew didn't contain it for 3 months? What does that mean in doublespeak?

GAH that pisses me off….the only reason I have used my card there is when I went to see my daughter and bought her groceries. Def within that time period.

]]> By: Ginshttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265407 Gins Tue, 18 Mar 2008 22:53:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-265407 They knew didn't contain it for 3 months? What does that mean in doublespeak? GAH that pisses me off....the only reason I have used my card there is when I went to see my daughter and bought her groceries. Def within that time period. They knew didn’t contain it for 3 months? What does that mean in doublespeak?
GAH that pisses me off….the only reason I have used my card there is when I went to see my daughter and bought her groceries. Def within that time period.

]]> By: PatBhttp://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51755 PatB Tue, 18 Mar 2008 21:34:00 +0000 http://www.geeksaresexy.net/2008/03/18/hannaford-data-breach-is-likely-much-worse-than-reported/#comment-51755 Its been a while, but I still see the 7-11's in my area using old cisco boxes for vpn back to corporate. Same with automotive companies from sam's used cars to bill's new chevys. Its been a while, but I still see the 7-11's in my area using old cisco boxes for vpn back to corporate. Same with automotive companies from sam's used cars to bill's new chevys.

]]>