Phil Muncaster reports: Credit card giant MasterCard is set to extend its ‘pay-by-selfie’ facial recognition technology to 14 countries including the UK this summer as part of its ongoing attempt to crack down on identity fraud. The firm told the FT that the decision was made after trials of the system in the US and the Netherlands…
Month: February 2016
Scottrade Faces Consolidated Data Breach Class Action Lawsuit
There’s an update to the Scottrade breach previously reported on this blog. The breach, potentially impacting 4.6M customers, was disclosed in October 2015 but had reportedly occurred between late 2013 and early 2014. Three individuals were indicted in November, 2015. Now Top Class Actions reports that a consolidated data breach class action lawsuit was filed in…
ASUS Settles FTC Charges That Insecure Home Routers and “Cloud” Services Put Consumers’ Privacy At Risk
Taiwan-based computer hardware maker ASUSTeK Computer, Inc. has agreed to settle Federal Trade Commission charges that critical security flaws in its routers put the home networks of hundreds of thousands of consumers at risk. The administrative complaint also charges that the routers’ insecure “cloud” services led to the compromise of thousands of consumers’ connected storage devices, exposing…
2 Veteran Fire Chiefs On Hook for $55G In Drug-Test-Leak Case
Sarah Dorsey reports: They’ll be shelling out $55,000—but they could have been on the hook for much more. The former head of the FDNY’s biggest anti-affirmative-action group and a retired fire officer have agreed to pay $45,000 and $10,000, respectively, to settle a lawsuit charging they leaked personal information—including the results of a drug test—to…
St. Joseph Hospital employee information leaked in phishing scam
News12 reports: A Passaic County hospital says that a security breach caused some personal information about some of its employees to get out. Saint Joseph’s Healthcare System in Paterson says that a phishing scam has led to the unintentional disclosure of employee information, including social security numbers. “The information disclosed did not include any employee…
Thinking about incident response
So I woke up to find that uKnowKids had issued a statement yesterday about their exposed database, an exposure that had been uncovered by and reported to them by Chris Vickery. Regular readers of this blog will recognize Chris’s name by now, as he’s uncovered a number of misconfigured databases that have been investigated by…