Tara Seals reports: Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. After customers began reporting that they had received hundreds of emails from the home-improvement giant, each containing an order confirmation for a stranger, the company confirmed the…
Category: Business Sector
ICO fines Marriott International Inc £18.4million for failing to keep customers’ personal data secure
From the U.K.’s Information Commissioner’s Office (ICO): The ICO has fined Marriott International Inc £18.4million for failing to keep millions of customers’ personal data secure. Marriott estimates that 339 million guest records worldwide were affected following a cyber-attack in 2014 on Starwood Hotels and Resorts Worldwide Inc. The attack, from an unknown source, remained undetected until…
Taiwan’s UMC pleads guilty, fined $60 mln in trade secret theft case
Reuters reports: Taiwan’s UMC has pleaded guilty to trade secret theft in the United States and will pay a $60 million fine in a case where it was accused of helping a Chinese state-owned chipmaker steal secrets from Micron Technology Inc. The fine is the second-largest ever in a criminal trade secret prosecution, the U.S….
True, the social networking app that promises to ‘protect your privacy,’ exposed private messages and user locations
Zack Whittaker reports: True bills itself as the social networking app that will “protect your privacy.” But a security lapse left one of its servers exposed — and spilling private user data to the internet for anyone to find. Read more on TechCrunch.
Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo
Brian Krebs has additional information on the Gunnebo attack mentioned yesterday in discussing the leak of security-related files concerning the Swedish parliament: In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. In August, Gunnebo said it…
More than 100 irrigation systems left exposed online without a password
Catalin Cimpanu reports: More than 100 smart irrigation systems were left exposed online without a password last month, allowing anyone to access and tamper with water irrigation programs for crops, tree plantations, cities, and building complexes. The exposed irrigation systems were discovered by Security Joes, a small boutique security firm based in Israel. Read more on…