Tweet
November 22, 2000 Olympic Sports Security Alert - For Immediate Release -
16:20 EST
We at Olympic Sports regret to say that we have experienced a security breach
on our systems. The attack occurred between the days of November 10, 2000 and
November 13, 2000 . Using a combination of a Microsoft IIS 4.0 security flaw
and inside password information, the hacker was able to access our server and
retrieve personal information such as credit card numbers and customer
information.
Olympic Sports has taken immediate proactive action from the moment of
detection. We immediately gathered the necessary information to identify the
hacker, as well as copies of all logged activity performed against our
servers. This information was used to determine exactly HOW the hacker
compromised our web servers as well what insider information he had used to
access our database servers. A recent security bulletin posted by Microsoft
announced the security vulnerability used on IIS 4.0 servers and the patch
was applied to our servers to prevent any further violation.
Using our logged information, our software provider has determined the
identify of the hacker to be located at servers owned by Crown Internet; a
Sportsbook operating in the Dominican Republic (recently moved from Costa
Rica, who just happens to use the same software). Employees of this book set
up a website at http://www.winnersbook.com and used this server to launch
their attacks against our system. The software provider is completing a patch
to prevent insider password information from ever being used again by another
book operating the same software.
A few of our customers have reported that their credit cards have been
charged without authorization from a processing company called "NetPro". We
have worked with these customers to find out what merchant is charging these
transactions, and have found that they are coming from winnersbook.com
Therefore, our recommendation for our customers who have processed credit
cards with us in the past six months is this:
· Call the company that issued your credit card on file with us immediately
and see if you have any unauthorized charges from NETPRO.
· If you DO have charges from NETPRO, we advise canceling the card
immediately.
· NETPRO has ALREADY been made aware of the situation and has issued CREDITS
against ALL accounts that were charged from winnersbook.com
It is important to note that the Microsoft bug allowed access to our server,
however it was INSIDE password information that allowed access to our
customer database. Therefore, this hacking job was premeditated and executed
by someone using inside information only known to approximately a dozen
people that use the same software. It was this hackers intent to defraud our
customers as well as our reputation. We are fully committed to working with
the credit card authorities to take action against the hacker(s) and bring
justice about quickly. Olympic Sports appreciates your business and it
saddens us that we have been a victim of malicious intent. We apologize for
the inconvenience some of you may face and want to wholeheartedly work with
you to remedy this situation as soon as possible. A special email has been
set up to field questions or concerns about the security breach.
Email security@thegreek.com
Please do not hesitate to contact us. Phone:1-800-274-7384 Ask for Spiro
Sincerely,
Olympic Sports www.thegreek.com
16:20 EST
We at Olympic Sports regret to say that we have experienced a security breach
on our systems. The attack occurred between the days of November 10, 2000 and
November 13, 2000 . Using a combination of a Microsoft IIS 4.0 security flaw
and inside password information, the hacker was able to access our server and
retrieve personal information such as credit card numbers and customer
information.
Olympic Sports has taken immediate proactive action from the moment of
detection. We immediately gathered the necessary information to identify the
hacker, as well as copies of all logged activity performed against our
servers. This information was used to determine exactly HOW the hacker
compromised our web servers as well what insider information he had used to
access our database servers. A recent security bulletin posted by Microsoft
announced the security vulnerability used on IIS 4.0 servers and the patch
was applied to our servers to prevent any further violation.
Using our logged information, our software provider has determined the
identify of the hacker to be located at servers owned by Crown Internet; a
Sportsbook operating in the Dominican Republic (recently moved from Costa
Rica, who just happens to use the same software). Employees of this book set
up a website at http://www.winnersbook.com and used this server to launch
their attacks against our system. The software provider is completing a patch
to prevent insider password information from ever being used again by another
book operating the same software.
A few of our customers have reported that their credit cards have been
charged without authorization from a processing company called "NetPro". We
have worked with these customers to find out what merchant is charging these
transactions, and have found that they are coming from winnersbook.com
Therefore, our recommendation for our customers who have processed credit
cards with us in the past six months is this:
· Call the company that issued your credit card on file with us immediately
and see if you have any unauthorized charges from NETPRO.
· If you DO have charges from NETPRO, we advise canceling the card
immediately.
· NETPRO has ALREADY been made aware of the situation and has issued CREDITS
against ALL accounts that were charged from winnersbook.com
It is important to note that the Microsoft bug allowed access to our server,
however it was INSIDE password information that allowed access to our
customer database. Therefore, this hacking job was premeditated and executed
by someone using inside information only known to approximately a dozen
people that use the same software. It was this hackers intent to defraud our
customers as well as our reputation. We are fully committed to working with
the credit card authorities to take action against the hacker(s) and bring
justice about quickly. Olympic Sports appreciates your business and it
saddens us that we have been a victim of malicious intent. We apologize for
the inconvenience some of you may face and want to wholeheartedly work with
you to remedy this situation as soon as possible. A special email has been
set up to field questions or concerns about the security breach.
Email security@thegreek.com
Please do not hesitate to contact us. Phone:1-800-274-7384 Ask for Spiro
Sincerely,
Olympic Sports www.thegreek.com
Comment