John Leyden reports: RBS WorldPay and a hacker are at loggerheads over the seriousness of a supposed breach on websites run by the payment processing firm. Security shortcomings – since blocked – on RBS WorldPay website exposed confidential information, including admin passwords and the contact details of partners, according to blog posts by Romanian hacker…
Author: Dissent
Hilton Grand Vacations uncertain whether customer data was viewed or compromised
On September 3, Hilton Grand Vacations notified (pdf) the New Hampshire Attorney General’s Office that they … recently became aware that certain information submitted to Hilton Grand Vacations as part of credit applications or Vacation Introduction Program purchases may have been viewed by an unauthorized person. Although we do not know for certain, it is…
Hacker Gonzalez Pleads Guilty to 20 Charges
Grant Gross of IDG News Service reports: Hacker Albert Gonzalez, accused of masterminding the massive data thefts at BJ’s Wholesale Club, TJX and several other retailers, has pleaded guilty to 19 charges related to computer hacking and credit card fraud, the U.S. Department of Justice said. Gonzalez, 28, of Miami, was a member of a…
Lax security left Georgia employees’ data vulnerable
Aaron Gould Sheinin reports: An audit of state government’s accounting office found lax computer security that left thousands of state employees’ personal information vulnerable to theft by hackers. No evidence was found that personal and financial information was stolen, according to the audit, released last week. But the report noted that weaknesses in the system…
CA notification bill heads to governor’s desk
The State Legislature approved State Senator Joe Simitian´s (D-Palo Alto) SB 20, a bill to strengthen and update California´s landmark privacy protection law. The bill now goes to the Governor, who has until October 11th to sign or veto the legislation. SB 20 builds on previous legislation authored by Simitian, AB 700 (2002), which required…
Employees: Sensitive info stolen during break-in; clients not being told
Mike Bowersock of NBC4i reports that although a burglary at NCO Financial Systems, a collection agency in Dublin Ohio, was reported to the police, what was not reported was that client data, including Social Security numbers, was stolen. The allegation comes from two employees who reportedly told the news reporter that they do not want…