[ISN] Regulator plans to discipline Hyundai Capital over hacking

From: InfoSec News <alerts_at_private>
Date: Wed, 18 May 2011 03:47:48 -0500 (CDT)

Yonhap News Agency

SEOUL, May 18 (Yonhap) -- South Korea's financial regulator decided 
Wednesday to punish Hyundai Capital Services Inc. for lax computer 
system maintenance, which led to a major hacking attack at the biggest 
local consumer finance firm.

The Financial Supervisory Service (FSS) launched an inspection into 
Hyundai Capital on April 11 after a hacker broke into Hyundai Capital 
between March 6 and April 7, stole personal customer information and 
demanded cash from the company, threatening to leak it on the Internet.

Holding Hyundai Capital accountable for negligence in computer system 
security management, the FSS will submit the case to its disciplinary 
decision committee to decide on the punishment for Hyundai Capital and 
its executives, according to the regulator.

The FSS said data on 1.75 million Hyundai Capital customers was leaked 
during the attack, in which the hacker implanted a malicious program in 
the company's homepage. The program was downloaded onto computers of 
customers who accessed the homepage.


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
Received on Wed May 18 2011 - 01:47:48 PDT

This archive was generated by hypermail 2.2.0 : Wed May 18 2011 - 01:58:01 PDT