To follow up on a case previously covered on this blog in March and October, this report from Mark Anderson of the Sacramento Bee: A gang that used card readers to skim personal information at gas station card readers in Northern California was busted for identity theft, and two of the four were sentenced to…
Month: January 2011
Ca: Boy hacked into Catholic school board’s computer
Another Canadian school has been caught with its security pants down, it seems, after some security protections were not reactivated following a server upgrade. Kennedy Gordon reports: The Catholic school board took action after learning a young hacker had accessed confidential records — action due in part to the boy’s parents. John Mackle, education director…
Victim numbers continue to climb in EVG Quality breach
From today’s Los Angeles Times: Police have identified 380 victims of credit or debit card fraud at a Sierra Madre gas station with losses exceeding $109,000, Police Chief Marilyn Diaz said Monday. […] “The fraudulent charges arising from credit and debit cards used at the EVG station are showing up both as EVG charges and…
NC: OCR clears hospital of charges in HIPAA complaint, patient sues
Emily Ford reports that although OCR found no violation of HIPAA’s Privacy Rule, a patient at the Rowan Regional Medical Center has filed a lawsuit against the center, alleging privacy violations. Rowan Regional Medical Center will undergo voluntary corrective action next month after a former patient filed a privacy complaint against the hospital. Federal investigators…
AU banks: massive social engineering FAIL
Peter Martin reports: A survey of Australian banks’ call centres has found that half of their staff are prepared to help people access someone else’s financial records. In November, customer experience research firm Global Reviews phoned call centre operators at eight of Australia’s leading banks, including each of the big four. Without identifying themselves as…
ESRB unintentionally exposes email addresses of people who filed complaints over Blizzard’s Real ID system
Gregg Reece writes about a reply-all gaffe exposing almost 1,000 individuals’ email addresses: During the recent Real ID catastrophe on the forums, many players decided to appeal to an industry source that might have been able to sway Blizzard to change its mind. These players contacted the ESRB (Entertainment Software Rating Board) as a Better Business Bureau-type…