Catalin Cimpanu reports: The US branch of telecommunications giant T-Mobile disclosed a security breach today that impacted a small number of customers of its prepaid service. The company said its cybersecurity team “discovered and shut down malicious, unauthorized access to some information related to your T-Mobile prepaid wireless account.” Exposed data included details such as…
Category: Business Sector
French Hotel Giant Leaks 1TB+ of Client Data
Phil Muncaster reports: A leading European hotel booking platform has leaked over 1TB of data on customers, clients and partners thanks to an unsecured Elasticsearch database, exposing them to account takeover, identity theft and financial fraud. The database reportedly belongs to French B2B hotel booking firm Gekko Group, a subsidiary of Europe’s largest hotel group,…
WeWork Developers Exposed Contracts and Customer Data on GitHub
Joseph Cox reports: WeWork developers exposed customer contracts, some of which contained bank account details, and the personal and contact information of other potential customers to the open internet. The issue impacts a subset of WeWork customers based in India, China, and Europe. The news comes after WeWork has essentially imploded, with its valuation tumbling and…
Target sues insurer for up to $74 million in 2013 data breach costs
Kavita Kumar reports: Target is suing its longtime insurance company for denying claims to reimburse Target for tens of millions of dollars it has paid out for new payment cards as part of settlements over the retailer’s 2013 data breach. The lawsuit against ACE American Insurance Co., based in Pennsylvania and now part of the…
Cn: Credit Rating Firm Kaola Accused of Privacy Breach
Wu Yujian, Zhang Yuzhe and Han Wei report: Kaola Credit, the credit rating service of leading payment company Lakala Payment, was accused of illegally storing and selling users’ personal data for millions of dollars, a case underscoring concerns about privacy breaches in the country’s booming fintech sector. Beijing-based Kaola Credit was among seven companies caught…
Activist Leaks Files From a Data Broker for Demoing its Software With ICE
Joseph Cox reports: To protest a data broker giving trial accounts of their product to U.S. Immigrations and Customs Enforcement, a source has provided Motherboard with internal files of Sayari, a company that collects and resells access to data on citizens from more than a hundred different countries. Sayari’s data banks include physical addresses, email…