Dr Chaos Podcast – Dec 26th 2016 – Year in Review


1 – “Peace” Dumps Yahoo User Data on the Dark Web

August 1st

Well-known cyber criminal Peace listed 200 million records of Yahoo user credentials on for sale on the dark web at the beginning of August. This data included usernames, passwords that were hashed using the md5 algorithm and dates of birth. This data was apparently collected illegitimately during a 2012 hack. The price for this hacked data? 3 Bitcoins, or about $1,860 USD. Without confirming the hack, Yahoo has acknowledged that they are aware of Peace’s claim.

2 – Pro-Ukrainian Hackers Hit Ohio Below the Belt
August 2nd
In an unusual hack by the Ukranian hacking group Pravy Sector, 150 GB of sensitive health data from the Central Ohio Urology Group was dumped online with a link to this data posted on Twitter. The highly personal details available within this hack included what treatments patients have received, addresses, full names and dates of birth. Given the sensitivity of this personal health information (PHI) many patients, doctors and even insurance companies could be facing damage to their reputation.

4 – Ashley Madison Attack -In July 2015, a group calling itself “The Impact Team” stole the user data of Ashley Madison, a commercial website billed as enabling extramarital affairs. The group copied personal information about the site’s user base and threatened to release users’ names and personally identifying information if Ashley Madison was not immediately shut down.