Nathan Layne reports: Wal-Mart Stores Inc said on Wednesday that prescription history and other basic information on a few thousand online U.S. pharmacy customers may have been visible to other users during a four-day stretch last month due to a coding mistake. “We had a software coding error for a 72-hour period from February 15…
Month: March 2016
Cox investigates possible data breach
When your employees’ data are up for sale on the dark web, that’s a pretty good indicator you’ve had a breach – if the data are valid. Joseph Cox reports: Apparent names, email addresses, phone numbers, and other information relating to some 40,000 Cox Communications employees is currently advertised on a marketplace specialising in stolen…
Operation Wrath takes aim at Russia (updated)
Seen on haveibeenpwned.com: 1,476,783 accounts dumped: In February 2016, the Russian portal and email service KM.RU was the target of an attack which was consequently detailed on Reddit. Allegedly protesting “the foreign policy of Russia in regards to Ukraine”, KM.RU was one of several Russian sites in the breach and impacted almost 1.5M accounts including sensitive personal information….
Three men associated with Anonymous Australia facing jail time. Part 3: “Lorax” avoids jail
In May, 2014, three men associated with Anonymous in Australia were all arrested and charged. DataBreaches.net covered their involvement with Anonymous and the charges against them. The first man, Mathew Hutchison (“Rax”), pleaded guilty to inciting others to attack government sites. He was able to avoid jail time, but had other conditions imposed on him….
MTISC-GOG investigation finds no evidence of breach
There’s a follow-up to a post concerning a possible data breach involving Maritime Trade Information Sharing Centre, Gulf of Guinea (MTISC-GOG). A statement from BIMCO had suggested that there had been a breach that could put ships at greater risk of attacks by pirates. DataBreaches received the following statement from LT(GN) Felix Tsekpetse, Officer in…
CFPB fines start-up Dwolla $100,000 for misrepresenting its data security
It’s not just the FTC looking at your security and your representations to clients about the security of your product. While the FTC recently settled charges against Henry Schein Practice Solutions for advertising a Dentrix product as providing “encryption” when it didn’t, the Consumer Financial Protection Bureau is also taking aim at companies that mislead consumers about security,…