A breach notification by Energy Federation Incorporated to the New Hampshire Attorney General’s Office indicates that on July 12, they discovered two pieces of malware on their server that had been inserted on July 7 and July 10. The malware “was designed to allow a third part to remotely search and collect” information on the server,…
Author: Dissent
Eye Safety Systems notifies customers that credit card database may have been hacked and decryption key may have been acquired
Attorneys for Eye Safety Systems have notified the New Hampshire Attorney General’s Office that they believe that a compromise of their web site, hosted by an unnamed third party vendor, may have compromised customers’ credit card transaction data. The firm reports that although the database “used a method of encryption,” the hackers may have acquired…
S. Korea plans to scrap online real-name system in wake of massive hack
It appears that a massive data breach affecting 35 million South Koreans who use popular portal and social networking sites Nate and Cyworld has served as a wake-up call for the government: The South Korea government will push ahead with plans to scrap the current real-name system for Internet users in the wake of the…
IE: Medical records found in Roscommon bin
The HSE is to investigate claims that the private medical records of dozens of patients were found in a bin outside Roscommon County Hospital. A report in the Roscommon People newspaper says the files include the names and addresses of patients, as well as details of their medical conditions and their doctors. The records apparently…
UW-Milwaukee breach includes 75,000 names, Social Security numbers (updated)
A computer security breach at the University of Wisconsin-Milwaukee may have exposed the names and Social Security numbers of about 75,000 people associated with the school. The incident primarily affected current and former employees and students. The university said in a press release that it is sending letters to those who may be affected. […] University technology…
ICO failure to punish Lush for data breach sends wrong message, says SecurEnvoy
Warwick Ashford reports: The failure of the Information Commissioner’s Office to impose a monetary penalty against cosmetics firm Lush – for failing to protect thousands of customer records from hackers – sends out all the wrong messages, according to authentication firm SecurEnvoy. “What we have here is a major e-commerce web portal – run by a…