Feeds

AMD snubs hackers' tiny package, will fix raided blog

As perps turn fire on Philips' websites

Internet Security Threat Report 2014

AMD hopes to heave its blog back online soon after hackers broke into the site.

The chip fryer downplayed the attack, and said a small number of encrypted account passwords were lifted. The records were subsequently dumped online in a 32KB file by the blog raiders.

Nonetheless AMD has reset its scribes' login credentials as a precautionary measure, as a statement by the silicon biz explains:

AMD's blog site was the target of an attack on 19 August. We believe that the attackers posted less than 200 registered usernames and salted password hashes to a hacker web site. AMD uses salted password hashes, which is an industry best practice for encryption and extremely difficult to crack.

We immediately took the blog site offline and changed all passwords. AMD remains committed to data security and user privacy and has launched an investigation into this matter. We expect to bring our blog site back online within the next 24 hours.

Black-hat hacking crew r00tbeersec claimed responsibility for the break-in at AMD's WordPress-driven blog, and followed up the assault with a much bigger raid on Dutch technology giant Philips. The miscreants ransacked various websites run by the company, and made off with a thousand acount records containing names, telephone numbers, addresses, passwords and password hashes. One of the affected sites stored its passwords in plaintext.

Commentary on the Philips hack can be found in a blog post by Paul Ducklin of Sophos here.

The motives behind the attacks, and the methods used, on AMD and Philips remain unclear. ®

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
Webcam hacker pervs in MASS HOME INVASION
You thought you were all alone? Nope – change your password, says ICO
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Meet OneRNG: a fully-open entropy generator for a paranoid age
Kiwis to seek random investors for crowd-funded randomiser
USB coding anarchy: Consider all sticks licked
Thumb drive design ruled by almighty buck
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
The Heartbleed Bug: how to protect your business with Symantec
What happens when the next Heartbleed (or worse) comes along, and what can you do to weather another chapter in an all-too-familiar string of debilitating attacks?
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.