Customer info from CitiBank, Capital One, others exposed as data breach grows

Citigroup and co. just got owned! EPIC WIN

www.rawstory.com

NEW YORK (Reuters) - The names and e-mails of customers of Citigroup Inc and other large U.S. companies, as well as College Board students, were exposed in a massive and growing data breach after a computer hacker penetrated online marketer Epsilon.

In what could be one of the biggest such breaches in U.S. history, a diverse swath of companies that did business with Epsilon stepped forward over the weekend to warn customers some of their electronic information could have been exposed.

(visit the link for the full news article)

Sounds like a first blow coming out of the "Empire State Rebellion campaign from Anonynous. Or perhaps it's from some other network of hackers... the power elite has so many enemies these days that it's almost impossible to know where the blows come from.

In either case, this is marvelous. Potentially all their private infos, including criminal or fraudulent activities, political briberies and bullying, as well as potential infos on their secret networks and conspiracies could have been accessed to. Citibank is one of the biggest, widest global banking cartel, perhaps the biggest. Just realize how important this is. Anything bigger than that would be having the private email data of all CFR members... but it's close to that!

The banksters have no clothes!

www.rawstory.com
(visit the link for the full news article)

I got an email from BestBuy this morning regarding this - they claim only my name and email was breached - they better be right.

You said the names and emails of customers. I do not see how that exposes the Banksters. It exposes their customers.

Originally posted by Echtelion
In either case, this is marvelous. Potentially all their private infos, including criminal or fraudulent activities, political briberies and bullying, as well as potential infos on their secret networks and conspiracies could have been accessed to. Citibank is one of the biggest, widest global banking cartel, perhaps the biggest. Just realize how important this is. Anything bigger than that would be having the private email data of all CFR members... but it's close to that!

BTW - the article only claims names and emails were breached - nothing more. Epsilon is a marketing company that handles email advertising for various clients - they were breached - not CitiGroup. If Epsilon had sensitive information (such as credit card information) from their client - that would be a much bigger story than this.

Originally posted by Echtelion

Sounds like a first blow coming out of the "Empire State Rebellion campaign from Anonynous. Or perhaps it's from some other network of hackers... the power elite has so many enemies these days that it's almost impossible to know where the blows come from.

In either case, this is marvelous. Potentially all their private infos, including criminal or fraudulent activities, political briberies and bullying, as well as potential infos on their secret networks and conspiracies could have been accessed to. Citibank is one of the biggest, widest global banking cartel, perhaps the biggest. Just realize how important this is. Anything bigger than that would be having the private email data of all CFR members... but it's close to that!

The banksters have no clothes!

www.rawstory.com
(visit the link for the full news article)

edit on 4/4/11 by Echtelion because: (no reason given)

edit on 4/4/11 by Echtelion because: (no reason given)

odd, I didn't see any raid on /b/ the past few weeks. They are probably organizing elsewhere. I doubt it was anonymous, but knowing the media, they will probably point fingers at them anyways, especially faux (lol) news.

If it was them, bravo, hope they got some good info, will be interesting to see what shows up the next few days.


Edit: Didn't Julian Assange from wikileaks say he was gonna expose a big bank this year?

Originally posted by groingrinder
You said the names and emails of customers. I do not see how that exposes the Banksters. It exposes their customers.

Agree. None of this hacking emails stuff has worked. The HBGary case is a perfect example. The CEO or director simply resigned and was replaced - the things the company does continues. Same here. It may be embarrassing and in need of a public relations damage control job but the company will continue to do what it has done before.

Wasted efforts for lulz.

What would be truly great is if the hackers could attack the highest level of bankers instead of the little guys.

Originally posted by DevilJin

Originally posted by groingrinder
You said the names and emails of customers. I do not see how that exposes the Banksters. It exposes their customers.

Wasted efforts for lulz.

What would be truly great is if the hackers could attack the highest level of bankers instead of the little guys.

That's the main problem, most only do it for "lulz" instead of bracing the fact that they could very well be a force to be reckoned with, if only they would ALL organize as one. Instead you have divisions, fighting their own battles.

Chanology still doesn't give a S&^% about what's going on. They are still playing with scientology...3 years later.

But who knows, maybe the small banks were warmups? time will tell.

interesting indeed. it is becoming obvious that the controllers are aware there is so much bad feeling towards them. this imo will gain momentum as the days and months roll by. there must be a point of no return when the perceptions against them are overbearing and manifest in their systems creaking and buckling. for those who have suffered through others greed, i meditate on a satisfactory remedy.
f

This doesn't surprise me in the least bit. I did a systems audit for a data center once for JP Morgan. After I was let in the building I had nobody escorting me around to the systems and even the users at the systems logged me on with their credentials and let me do what I needed without any regard to what I was doing. They would log me on and then just go to lunch. While going from system to system I had noticed one employee was actually downloading a Blu-Ray copy of Avatar through IRC.

It's people like that that cause the vast majority of these information breeches. The networks themselves are actually very secure, but they are only as secure as the weakest link. The end users.

A lot of these companies have been running flash contests lately.
I suspect Epsilon's SAS marketing automation software was tied in.

Coke had a best buy contest that strangely went belly up shortly after starting. It was very strange.

Best Buy, Kroger- a lot of these companies have promotional rewards cards- also probably tied in, and that sometimes DO hook to incentive rewards, like UPROMISE account deposits and contests wins that get 'put onto' the promo cards.

In fact, a lot of the grocery stores have been running just such a flash contest this last month, with winnings added digitally to the rewards cards.

Other than the information which could be used for phishing, I mean, horridly used if purchasing lists were taken, I don't personally rule out that there WAS a financial objective to this hack.

That sort of software hooks into so much junk, people looking at it from a security prospective probably are still untangling it. People that do marketing tend to be such white hat, "oh and we can do this and this and this" and they tend not to worry that much about security, because, you know, it's such a drag to hear that while we can do this and this and THIS, maybe we shouldn't.

I'm sorry if this is a breach of the rules, but I am so sick and tired of IDIOTS crowing about people sticking it to The Man when the only ones getting stuck are the little guys. The data that was compromised was customer data -- as in people who have accounts with the companies in question. So thank you for being all excited about my wife's information possibly being compromised, because it sure wasn't the inner workings of Capital One or any of the other companies that got exposed.

reply to post by Echtelion

In either case, this is marvelous.

I am not a bankster, I am a customer and I fail to see how my identity theft is marvelous news :shk:

This is yet another scary incident in an ever-scarier world.

IMPORTANT INFORMATION FOR OUR CUSTOMERS


Chase is letting our customers know that we have been informed by Epsilon, a vendor we use to send e-mails, that an unauthorized person outside Epsilon accessed files that included e-mail addresses of some Chase customers. We have a team at Epsilon investigating and we are confident that the information that was retrieved included some Chase customer e-mail addresses, but did not include any customer account or financial information. Based on everything we know, your accounts and confidential information remain secure. As always, we are advising our customers of everything we know as we know it, and will keep you informed on what impact, if any, this will have on you.

www.chase.com...

if you received one of these e-mail id suggest changing your e-mail address before being brute-forced.

See, I love THIS
www.epsilon.com...&%20Events/Press_Releases_2011/Epsilon_Notifies_Clients_of_Unauthorized_Entry_into_Email_System/p1057-l3

First they say it was only email of a subset of their customers. (We know it was alot, heck I've got 20 of these emails today.)

OK, then they say, a full assessment is underway. lol

I have...**concerns** I need more information.

Originally posted by fenceSitter
I got an email from BestBuy this morning regarding this - they claim only my name and email was breached - they better be right.

yeah I got one from them Target and Disney.

So criminals getting a nice list which can then be used for spam and phishing attempts is an epic win
This was almost certainly done for the money nothing else.

I want to know if this was more than just email. (FULL ASSESSMENT UNDER WAY so I'm not buying that form letter just email addresses just yet)....Want to know if it hooked into their SAS program, and if so, how far that rabbit hole went- including rewards cards, upromise accounts, digital prizes put on promo cards, ect.

Here's who I know of in addition to others that have been listed:
1-800-flowers.com (rewards program and digital prizes)
bebe
tivo
best buy (rewards program)
Kroger(hooks into rewards programs, cellfire, catalina, register software?, upromise, digital prizes)
Brookstone
Walgreens (seems to use eprize for promos)
Ameriprise Financial.
Capital One
Citi
Home Shopping Network
JP Morgan Chase
New York & Co.,
Ritz-Carlton Rewards
LL Bean
Visa Card
Hilton Honor
Marriott Rewards
Disney Destinations
US Bank
McKinsey Quarterly,
Ethan Allen
The College Board.

Gotta tell ya that I received two emails from Chase and Target. Also, over the last few days, I've been inundated with spam that addresses me by my user name (which is not my email address). At first I thought that someone had hacked my computer but now I'm thinking that maybe it's part of this breach. Also, I received two emails today from a websites that I haven't accessed in many years. One was for a real estate company and said "we have activated an account for you to review properties for sale in your area". I had never asked them to do this nor have I visited their site in over two years. Should I be concerned that the info has been used to somehow access information from hidden files on my computer? Any input from the computer-literate ATSers would be greatly appreciated.

Thank so much!
Timidgal

I got another one from Layne Bryant.