Kyodo News reports: Kyushu Railway Co. said Friday that personal and credit information on up to 8,000 customers were stolen from the goods store website for its “Seven Stars in Kyushu” luxury cruise train. The leaked information includes customers’ names, addresses, phone numbers, email addresses, date of birth and type of work, according to JR…
Category: Business Sector
Majority of Hotel Websites Leak Guest Booking Info
Jai Vijayan reports: Information that people submit when making an online hotel reservation is often available in its entirety to a lot more parties than just the hotel itself. New research from Symantec shows that a majority of hotels—from small independent properties to large five-star resorts and chains—routinely leak detailed guest booking data with third-party…
Equifax forced to report to the Privacy Commissioner of Canada for six years as a result of 2017 data breach
Vito Pilieci reports: The Office of the Privacy Commissioner of Canada will monitor American credit agency Equifax Inc. for the next six years after an investigation into a massive data breach of personal information at the firm in 2017. […] The commissioner has also released a “compliance agreement” with the company that cracks down on…
Yahoo strikes $117.5 million data breach settlement after earlier accord rejected
Jonathan Stempel reports: Yahoo has struck a revised $117.5 million settlement with millions of people whose email addresses and other personal information were stolen in the largest data breach in history. The proposed class-action settlement made public on Tuesday was designed to address criticisms of U.S. District Judge Lucy Koh in San Jose, California. She…
Pick-Six: Intercepting a FIN6 Intrusion, an Actor Recently Tied to Ryuk and LockerGoga Ransomware
From a recent report by Brendan McKeague, Van Ta, Ben Fedore, Geoff Ackerman, Alex Pennino, Andrew Thompson, Douglas Bienstock of FireEye: Recently, FireEye Managed Defense detected and responded to a FIN6 intrusion at a customer within the engineering industry, which seemed out of character due to FIN6’s historical targeting of payment card data. The intent…
Senate Permanent Subcommittee on Investigations Rips Into Equifax Over Its Massive 2017 Data Breach.
So the Congressional report on Equifax’s massive 2017 databreach was released. The title gives you a clue as to what you can expect to read in it: HOW EQUIFAX NEGLECTED CYBERSECURITY AND SUFFERED A DEVASTATING DATA BREACH STAFF REPORT PERMANENT SUBCOMMITTEE ON INVESTIGATIONS UNITED STATES SENATE The report is 71 pages, and the following is…