Brian Krebs reports: Charge Anywhere LLC, a mobile payments provider, today disclosed that malicious software planted on its networks may have jeopardized credit card data from transactions the company handled between November 2009 and September 2014. In a statement released today, the South Plainfield, N.J. electronic payment provider said it launched investigation after receiving complaints about fraudulent…
Month: December 2014
TD Bank to Pay $625,000 to Address Data Breach Involving Thousands of Massachusetts Residents
A multi-state settlement over the lost backup tapes was reported in October, but the Massachusetts Attorney General’s Office just issued this press release over what appears to be a separate and second settlement stemming from the same incident: TD Bank will pay $625,000 and must take steps to strengthen its security practices after losing unencrypted back-up tapes containing personal…
Widespread Employee Access to Sensitive Files Puts Critical Data at Risk – Survey
From the press release: Despite a growing number of data breaches occurring under the glare of the public spotlight, 71 percent of employees in a new survey report that they have access to data they should not see, and more than half say that this access is frequent or very frequent. As attention shifts from…
Hackers contacted top Sony executives before attack
Martyn Williams reports: Top executives at Sony Pictures received an email extorting money three days before the company’s computer network was taken offline in a major hack. The email message was among thousands released on Monday when the email boxes of two top Sony executives were leaked online. It was the latest release of potentially embarrassing…
Flowers Hospital ID theft suspect can’t withdraw plea
Lance Griffin reports: A Headland man believed to be involved in a large identity theft incident at Flowers Hospital has failed in an attempt to withdraw his guilty plea. U.S. District Judge Myron Thompson ruled Monday that Kamarian D. Millender, 29, knowingly and willfully pleaded guilty to “felony information of aggravated identity theft” in July….
HIPAA Settlement Underscores the Vulnerability of Unpatched and Unsupported Software
From HHS, a bulletin concerning a settlement following a malware incident in 2011 that might have been avoided had the covered entity updated and patched their software: Anchorage Community Mental Health Services (ACMHS) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule with the Department…