With the flurry of articles about the indictment of the Albert Gonzales and two supporting cast members in the Heartland and Hannaford breaches its nice to see a nice succinct piece that hits on the items learned. Rich Mogull was good enough to provide exactly that.
From Securosis:
The indictment today of Albert Gonzales and two co-conspirators for hacking Hannaford, 7-Eleven, and Heartland Payment Systems is absolutely fascinating on multiple levels. Most importantly from a security perspective, it finally reveals details of the attacks. While we don’t learn the specific platforms and commands, the indictment provides far greater insights than the speculation of those like myself. In the “drama” category, we learn that the main perpetrator is the same person who hacked TJX (and multiple other retailers), and was the Secret Service informant who helped bring down the Shadowcrew.
For the full article read on.
Here’s another piece from Chris Wysopal on the technical aspects of the breaches.
(Image used under CC from fosforix Flickr feed)
