DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

(follow-up) HuskyDirect.com site still down, some victims report fraud

Posted on January 31, 2011 by Dissent

As a follow-up to a previously reported breach  involving a hack of HuskyDirect.com, there are now some reports suggesting that the data may have been misused.

Back on January 11, U.Conn  had posted a notice to its web site:

The UConn Co-op was informed by its vendor that there has been a data security incident involving the customer database for the UConn Co-op’s website HuskyDirect.com that may have exposed the billing information of HuskyDirect customers. This information includes name, address, e-mail, telephone number, and credit card number, expiration date, and security code.

The database consisted of 18,000 HuskyDirect customers. The Co-op is investigating how many accounts were actually accessed.

[…]

The Co-op has posted answers to frequently asked questions on this matter on its website.

According to John Stewart of The Daily Campus, there have been some reports of fraudulent card number use that may be linked to the incident:

Reactions by ex-customers turned current victims on a UConn basketball blog suggest that damage was minimal, but noticeable. The hackers’ first steps seem to be baby steps before attempting to make larger, more financially damaging leaps into and out of the victims bank accounts.

“Our bank called us last Monday, saying there were two suspicious charges on my ATM card, both in England, small amounts but there may be more in transit,” one blogger wrote.

Another shared a similar experience.

“We just had to cancel our bank cards because of four fraudulent attempts to get money from us, and were wondering why. Now we know. One vendor got $4.95, but we had that reversed. Another was a far-right religious organization, another was Disney Movie Channel and another was the Real.com people, the folks who offer Real Player.”

Though small transactions were the general trend, some customers have reported multiple charges of over a hundred dollars – one of them reporting two charges of over a thousand dollars.

Note that although The Daily Campus report, published January 30, indicates that  the breach occurred “early last week,: the breach occurred on or before January 7, when HuskyDirect.com was taken offline and the first round of news coverage began.

Related posts:

  • UConn Customer Database Hacked (updated)
  • Commentary: Repeated insider breaches at TD Bank should trigger federal regulator investigation (update 1)
  • Who is on TEKsystems Intel Leak
  • (update) Hacker accessed HuskyDirect.com database by using vendor’s administrative password
Category: Breach IncidentsBusiness SectorEducation SectorHackID TheftU.S.

Post navigation

← 28 million Plenty of Fish users’ personal details hacked – report (updated)
Congress Has The Sense It Should Enact A Comprehensive Data Security Law →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.