Was a hack of a U.S. retailer used to develop an ISIL hit list of American military members and government employees? According to a federal complaint unsealed today, it appears it was. From the Department of Justice: Malaysian authorities have detained Kosovo citizen Ardit Ferizi in Malaysia on a U.S. provisional arrest warrant alleging that he provided…
Month: October 2015
Data dump suggests possible breach at Electronic Arts
Steve Ragan reports: A post to Pastebin containing account details for Electronic Arts (EA) customers hit a little too close to home for one gamer, who found his email address, account password, and games list among the harvested data. The data dump also included what appear to be dates of birth. A mere three hours…
CERT.pl report on “The Postal Group”
From CERT.pl: During the SECURE conference, we presented a talk outlining actions performed by a group of criminals, which we have called “The Postal Group”. Their name is derived from the fact that they masquerade their phishing attacks as messages from the post office. This phishing then leads to either cryptolocker or a banking trojan….
Security breach at Halifax and Bank of Scotland left account activities visible for up to six years (UPDATED)
Katie Morley reports: A security hole in Halifax and Bank of Scotland’s online banking facilities has put tens of thousands of customers at risk of fraud by leaving their financial activities visible to anyone. The glitch meant fraudsters were able to view accounts without using hacking devices as they would only need someone’s name, date…
Alberta Health System investigating alleged privacy breach by 48 Calgary employees
Erica Stark reports: At least one health care worker has been fired and dozens more are facing disciplinary action after allegedly improperly accessing a patient’s information, a claim that the nurse’s union is disputing. Forty-eight employees of Alberta Health Services are under investigation by the health authority and the privacy commissioner after a routine audit revealed…
Service Systems Associates updates its breach disclosure
Back in July, this site reported that a number of gift shops at zoos were impacted by a breach involving their point of sale systems. Service Systems Associates (SSA) issued a statement at the time. I’m not sure why more impacted entities are first disclosing now, but WBAP reports: You’ll want to check your bank statements if you went…