Galen Moore reports: …. According to Canada’s privacy commissioner, Jennifer Stoddart, the breaches affected laptop computers and flash drives, and compromised sensitive information including Social Insurance Numbers, and health card and passport numbers; academic transcripts; banking information and tax records. An audit conducted by Stoddard’s office examined 149 data storage devices marked for resale, and…
Category: Business Sector
Debit Breach Hits Ohio Accounts
Jeffrey Roman reports: June 21 Update: The recent breaches that affected dozens of Northeast Ohio banks and credit unions were most likely caused by the interception of CVV2 card security codes, says Mike Urban, senior director of fraud product management at FICO. “It’s not a skimming situation,” Urban says of the breaches which started in…
Dropbox left document storage accounts open for four hours
Jeremy Kirk reports: Online storage service Dropbox accidentally turned off password authentication for its 25 million users for four hours on Monday — although “much less than 1%” of those accounts were accessed during the period, the company said. It is still investigating whether any of those accounts were improperly accessed. Dropbox CTO Arash Ferdowsi wrote…
Hackers claim 177K e-mails from Sony Pictures France
Erica Ogg reports: Sony’s turn as the whipping boy for Internet hackers continued over the weekend. Two hackers posted a list of e-mails they say they took from the Sony Pictures France Web site. The two hackers who claim responsibility are a Lebanese student who goes by the handle Idahc, and a French friend of his…
Sony Portugal latest to fall to hackers
On June 9, Chester Wisniewski wrote (but I missed): The same Lebanese hacker who targeted Sony Europe on Friday has now dumped a database from Sony Portugal. The hacker claims to be a grey hat, not a black hat, according to his post to pastebin.com. “I am not a black hat to dump all the…
Centaur website reveals guests’ personal info
Shilpa Phadnis reports: The Centaur Hotels’ website, centaurhotels.com, appears to have compromised personal information of its hotel guests, in what seems to be a case of poor internet security protocols implemented by the site. This allowed website visitors on Saturday to obtain and view details of passports, driving licences, pan numbers, credit cards, and other…