Customers who ordered from one of Quayside Publishing‘s web sites since the end of April recently received a notice of a breach that was reported to the Vermont Attorney General’s Office: We are writing to notify you of an incident that involved unauthorized access to our web server in which your personal information, including your…
Category: Business Sector
Nintendo rewards program site hacked, names, email addresses and phone numbers possibly compromised
Nick Summers reports: Nintendo admitted today that Club Nintendo, a loyalty program that gives players exclusive products in exchange for registering their consoles and games, has been hacked. The company launched an investigation on July 2 after witnessing a “large” number of errors on the site. Nintendo can now confirm that 23,9326 unauthorized log-ins occurred between June…
MAPCO Express sued over data breach
Another potential class-action lawsuit has been filed in response to the MAPCO Express breach, reported previously on this blog. The suit also names the convenience chain’s parent company, Delek U.S. Holdings Inc., as defendants. Read more on Tuscaloosa News. The complaint by Ian Yeager was filed on June 17, and an amended complaint (uploaded here)…
Vendini breach update
As I’ve noted before, the Vendini breach, reported previously on this blog, appears to fairly large, but has generally flown under national mainstream media attention. Instead, I see bits and pieces in local media or on organizations’ web sites as entities report that their patrons or members were affected (cf, reports involving Purple Rose Theatre,…
Ubisoft notifies UPlay users to change passwords following breach
Ubisoft has posted an announcement on their site today: Hello All, We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems. We instantly took steps to close off this access, to begin a thorough investigation with relevant authorities, internal and external security experts, and…
AT&T iPad hacker appeals conviction, long sentence
Jeremy Kirk reports that attorneys for security researcher Andrew Auernheimer (“weev”) have filed an appeal over his conviction and sentencing: Andrew Auernheimer, known as “weev,” created an automated tool to extract the names and email addresses of 114,000 iPad 3G owners from AT&T’s servers, which were used by customers to access their accounts. The information was…