Thanks to the New Hampshire Attorney General’s Office for posting breach notices online: Student Loan Xpress, Inc. reported (pdf) that the service provider for their student loans, American Education Services, inadvertently transmitted personal information on student loans to another lender that AES also has contracts with. The information may have included names, addresses, Social Security…
Category: Business Sector
StayFriends members’ personal info exposed by SQL injection
The same individual, “unu,” who has been exposing other web sites vulnerable to SQL injection, has issued some screen shots showing how the German site, StayFriends, left its over 7 million users’ personal information vulnerable to exposure or access. According to the account of the hack, the exposure involved names, email addresses, passwords, some credit…
PA: Accused card skimmer pleads guilty
Keith Phucas reports: A Philadelphia woman accused of skimming credit card accounts while she worked at a Plymouth Meeting Mall restaurant pleaded guilty Wednesday to identity theft, theft by deception, criminal conspiracy and other felony charges. Her sentencing is pending. Jasmine Crowder, 20, worked at California Pizza Kitchen last summer when she stole hundreds of…
Former Lawrence man pleads guilty to ID theft
George Diepenbrock reports: A 33-year-old Kansas City, Kan., man, who once lived in Lawrence, has been sentenced to 10 years in federal prison for an identity theft scheme in Lawrence and the Kansas City area that totaled more than $78,000. William A. Morris had pleaded guilty in September to one count of aggravated identity theft…
Albuquerque woman indicated for ID theft affecting dozens
The Associated Press is reporting that Helen Bates of Albuquerque was indicated as part of an ID theft and forgery ring. Documents found at her home included credit cards of 31 people as well as photocopies of checks issued to a gas station where she had worked between October 2005 and October 2007. So far,…
And yet even more p2p breaches
Thanks to Rian of RedTeam Protection, here are some more breaches they uncovered: An executive producer at a Manhattan based television Production Company published 2,755 documents onto the gnutella file-sharing network. Contractors of this firm were required to provide their name, date of birth, and social security number for tax purposes. The invoices with personal…