Rewards “R” Us members notified of forced password reset
Toys “R” Us has been notifying members of their Rewards “R” Us program after they obtained evidence of attempts to gain unauthorized access to some accounts. A spokesperson for the retailer tells...
View ArticleCa: Victim of arson spree questions ICBC’s handling of privacy breach
There’s a follow-up to a breach that I had described as one of the worst insider breaches at its time – because it put lives at serious risk and some victims were firebombed or shot at. Mi-Jung Lee and...
View ArticlePIP Printing and Marketing Services exposed 400GB of data, including personal...
MacKeeper Security Research Center reports that PIP Printing and Marketing Services, a franchise of Franchise Services in California, was leaking data: The majority of 400+ GB server is dedicated to...
View ArticleInterContinental reports payment card breach at 12 U.S. hotels
Reuters reports that Intercontinental Hotels has now confirmed a breach that was first reported by Brian Krebs in December: InterContinental Hotels Group Plc said on Friday that a malware in the...
View ArticleAn Anonymous group just took down a fifth of the dark web
Russell Brandom reported this yesterday (Friday): Visitors to more than 10,000 Tor-based websites were met with an alarming announcement this morning: “Hello, Freedom Hosting II, you have been hacked.”...
View ArticleData from 2014 hack of children’s online game Bin Weevils leaked online;...
We’ve seen it before – in fact, we seem to be seeing it a lot recently – data from an old hack first being publicly leaked. This time it’s Bin Weevils, a British online children’s game, owned by 55...
View ArticleDenuvo Website Leaks Secret Information, Crackers Swarm
While the folks at Denuvo are leaders in the field of video game protection, the same cannot be said about their website. In an embarrassing blunder, the company has left some directories and files...
View ArticleUsed government computers bought at auction filled with personal information
The 1980s called…. Scott Noll reports that a KHOU investigation “once again found the City of Houston selling private, personal information through online auctions of used government equipment.” What...
View ArticleHackers demand £1 million from David Beckham’s advisers
Hannah reports: As if exposing David Beckham’s rants regarding his missed opportunity of knighthood were not enough, hackers demanded almost a million euros from his advisers. According to a report...
View ArticlePro-Trump group hacked, website taken down in Cabinet fight
Tom LoBianco reports: A prolific Republican super PAC pushing President Donald Trump’s Cabinet took down its website temporarily Monday after hackers got in and retitled sections “Make America S****y...
View ArticleLaptop-light GoCardless says customers’ personal data may have been lifted
John Leyden reports: London-based payment processing firm GoCardless is warning customers that their personal information might have been exposed following the theft of 19 laptops from its offices last...
View ArticleSports Direct hacked last year, but still hasn’t told its staff of data breach?
Alexander J. Martin reports: Sports Direct has left its 30,000-strong workforce in the dark over a data breach in the autumn when a hacker accessed internal systems containing staffers’ personal...
View ArticleIL: Alton Steel employees report tax refund fraud following hack
This sounds like hackers immediately used hacked information to file tax returns to obtain fraudulent refunds. Within a matter of days, “numerous” employees reported that they had become victims....
View ArticleGood guy Logic Supply resolves breach in days, unlike some companies
John Leyden reports: US-based industrial computer supplier Logic Supply has reset user passwords following a suspected security breach. Unauthorised access through the firm’s website on 6 February may...
View ArticleWhile investigating W-2 phishing scam, company discovers they were scammed...
The 2017 W-2 Phishing Victims List continues to grow, and I’m not posting most of them as individual reports, but one news story involving Monarch Beverage Company in Indianapolis deserves special...
View ArticleMalware hit Hitachi Payments Services, 3.2 million cards affected
Press Trust of India reports: Hitachi Payments Services on Thursday accepted its systems were compromised by a sophisticated malware in mid-2016, that led to one of the biggest cyber security breaches...
View ArticleLoblaw, Canadian Tire respond to breach reports
Aleksandra Sagan reports: Loblaw is warning PC Plus rewards collectors to beef up their passwords after points were stolen from some members’ accounts. “We are treating this as a breach as individual...
View ArticleMag publisher Future stored your FileSilo passwords in plaintext. Then...
Shaun Nichols reports: UK magazine publisher Future’s FileSilo website has been raided by hackers, who have made off with, among other information, unencrypted user account passwords. FileSilo.co.uk is...
View ArticleHacker steals 83,000 accounts from UPI news agency
Patrick O’Neill reports: A hacker is selling a database supposedly containing 83,000 compromised accounts from UPI.com, the website of the 110-year-old American news agency United Press International....
View ArticleFast Food Chain Arby’s Acknowledges Breach at Hundreds of Locations
Brian Krebs reports: Sources at nearly a half-dozen banks and credit unions independently reached out over the past 48 hours to inquire if I’d heard anything about a data breach at Arby’s fast-food...
View Article