Texas company lays out 'hacking' case against Minnesota Public Radio

Texas company lays out 'hacking' case against Minnesota Public Radio
Texas company lays out 'hacking' case against Minnesota Public Radio

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

Content-Transfer-Encoding: QUOTED-PRINTABLE

By David Brauer
Dec 15 2009 

Do Minnesota Public Radio and reporter Sasha Aslanian realistically face 
civil and criminal penalties after uncovering a Texas firm=E2=80=99s security 
breaches involving state of Minnesota job-seeker data?

Lookout Services - which acknowledges an October security breach and 
subsequent security weaknesses - claimed in a Dec. 14 statement that 
their data was "illegally compromised." The company - which notes "only 
the Minnesota Public Radio reporter viewed" some data and wants MPR to 
disclose what was viewed - will "aggressively seek prosecution for this 
egregious act," according to the statement.

In a Dec. 11 report, Aslanian said she was able to see "employee names, 
birth dates, Social Security numbers and hire dates" on Lookout's web 
site "without using a password or encryption software."

Lookout CEO Elaine Morley says that=E2=80=99s not the whole truth. She contends 
Aslanian did use a password and ID to penetrate Lookout's security - and 
told Morley so during a Dec. 7 phone call. Later, Morley asserts, 
Aslanian used information from that penetration to view the state data, 
even though she didn=E2=80=99t need a password or encryption that time.


Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Did a friend send you this? From now on, be the 
first to find out! Subscribe to InfoSec News 

Site design & layout copyright © 1986-2015 CodeGods