tech:

taffy

LivingSocial Hack Compromises 50M Users

LivingSocialDaily deals site LivingSocial may have exposed customer data for some 50 million users, when it experienced a cyber-attack on its computer systems.

The breach resulted in unauthorized access to names, email addresses, date of birth (for some users), and passwords. The database that stored customer credit card information was not affected, nor was the Facebook data for LivingSocial users using Facebook Connect.

LivingSocial says it is working with law enforcement, and forensic security teams, to investigate the incident and to improve its security systems. As far as online passwords go, the company says its passwords were ‘hashed’ (hashing uses an algorithm to convert the password into a different string)   and ‘salted’ (salted means these passwords likely have additional random text added, as an additional layer of security).

The attack,  reported by Kara Swisher of AllThingsD, and based on an internal email sent out by the company’s CEO Tim O’Shaughnessy, carries a confirmation from a LivingSocial PR spokesperson, saying that 50 million users were indeed affected. According to a notice posted on the LivingSocial website, ‘some customer data from our servers’ were compromised. 

How did the company manage to get 50 million of its users compromised at one go? Were all LivingSocial users compromised? LivingSocial says it has 70 million members worldwide, so presumably, not. 

LivingSocial passwords were hashed with SHA1 using a random 40 byte salt. Passwords entered by customers were changed into a data string, creating a unique data fingerprint, using a security algorithm (that’s the ‘hash’). The company further added random information to the passwords (the salting part). Following the attack, LivingSocial says it is has switched its hashing algorithm from SHA1 to bcrypt. 

LivingSocial joins Twitter, LinkedIn, and Evernote, among others, in a list of companies that were breached recently.

[Image courtesy: LivingSocial]

Just in

Tembo raises $14M

Cincinnati, Ohio-based Tembo, a Postgres managed service provider, has raised $14 million in a Series A funding round.

Raspberry Pi is now a public company — TC

Raspberry Pi priced its IPO on the London Stock Exchange on Tuesday morning at £2.80 per share, valuing it at £542 million, or $690 million at today’s exchange rate, writes Romain Dillet. 

AlphaSense raises $650M

AlphaSense, a market intelligence and search platform, has raised $650 million in funding, co-led by Viking Global Investors and BDT & MSD Partners.

Elon Musk’s xAI raises $6B to take on OpenAI — VentureBeat

Confirming reports from April, the series B investment comes from the participation of multiple known venture capital firms and investors, including Valor Equity Partners, Vy Capital, Andreessen Horowitz (A16z), Sequoia Capital, Fidelity Management & Research Company, Prince Alwaleed Bin Talal and Kingdom Holding, writes Shubham Sharma. 

Capgemini partners with DARPA to explore quantum computing for carbon capture

Capgemini Government Solutions has launched a new initiative with the Defense Advanced Research Projects Agency (DARPA) to investigate quantum computing's potential in carbon capture.