Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Live Blogging Platform CoveritLive Gets Hacked

CoverItLive, a live-blogging platform owned by Demand Media, has acknowledged that it has been the victim of a cyber attack and that certain information has been accessed without authorization.

CoverItLive describes itself as an enterprise-class live blogging platform designed to handle hundreds of thousands of simultaneous readers, and is used by thousands of outlets to cover events as they happen.

CoverItLive, a live-blogging platform owned by Demand Media, has acknowledged that it has been the victim of a cyber attack and that certain information has been accessed without authorization.

CoverItLive describes itself as an enterprise-class live blogging platform designed to handle hundreds of thousands of simultaneous readers, and is used by thousands of outlets to cover events as they happen.

So far, few details are available, but the company did say that credit card and financial account information has not been compromised.

CoverItLive launched in late 2007 and was acquired by Demand Media in March 2011. The live blogging platform is used by thousands of writers to an audience of millions of readers, the company says. The service names ESPN, Sky News, General Motors, CNET, ZDNet, and other well-known media outlets as customers.

Due to the fact that an investigation is still in progress, the company didn’t share any additional details. “Unfortunately, we don’t have any additional information we can share at this time,” Kristen Moore VP, Corporate Marketing & Communications at Demand Media told SecurityWeek.

The full email that was sent to SecurityWeek follows:

CoveritLive recently discovered that certain proprietary data files were accessed without authorization starting on or about January 7, 2012. We have not yet determined if, or to what extent, CoveritLive account information (i.e., user names, email addresses and/or passwords) was accessed. We do know, however, that no financial account information has been compromised.


Our investigation is ongoing, and, as a precautionary measure, we will implement required password resets for all active CoveritLive accounts. We plan for this process to begin Saturday January 14, 2012 at 12 AM EDT (5 AM GMT). The next time you log in after the process has begun, you will be asked to change your password before you will be allowed into your account. NOTE: we do not anticipate that you will experience a disruption in your event if you are using CoveritLive while the change is invoked.


Your password and all account passwords are encrypted as a standard CoveritLive information security practice, and we have no evidence that an unauthorized individual has actually retrieved, or is using such data. However, out of an abundance of caution we recommend that if you registered for CoveritLive using an email address and password combination that you use for other online accounts, you should immediately create unique passwords or new login credentials for those other sites and accounts.


We take this matter very seriously and will continue to work to ensure that all appropriate measures are taken to protect your personal information from unauthorized access. We also would like to take this moment to remind you of a couple of tips that should always be followed:


• Do not open emails from senders you do not know. Be especially cautious of “phishing” emails, where the sender tries to trick the recipient into disclosing confidential or personal information.

• Do not share personal or sensitive information via email. Legitimate companies will not attempt to collect personal information outside of a secure website.


We regret any inconvenience that this password change process may cause you. Please do not hesitate to contact us at [email protected] if you have any questions.


Sincerely,


CoveritLive Team

 


Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Cybercrime

Cybercriminals earned significantly less from ransomware attacks in 2022 compared to 2021 as victims are increasingly refusing to pay ransom demands.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.