Catalin Cimpanu reports on another exposed MongoDB installation found by Bob Diachenko of Hacken Proof: The MongoDB instance contained 854GB of data, with 202,730,434 records in total, most of which were CVs for Chinese users. The resumes contained all the sensitive details you might expect to find on a CV, such as full names, home…
Category: Business Sector
Another data breach? Amazon India leaks sellers information in tech error
Yuvraj Malik reports: A month after its global e-commerce site faced a technical glitch that left exposed user data, Amazon has suffered a similar malfunction this time to its India platform. Sources in know of the situation said that a glitch was reported internally last week that exposed some sellers’ private financial information to other…
Neiman Marcus reaches $1.5 million data breach settlement
AP reports: More than 40 state attorneys general have announced a $1.5 million settlement with The Neiman Marcus Group LLC over a data breach the Dallas-based retailer disclosed in January 2014. The breach exposed customer credit card data at 77 Neiman Marcus stores nationwide. Over a three-month period in 2013, about 370,000 Neiman Marcus credit…
HK: TransUnion in new apology amid leak fear
Jane Cheung reports: TransUnion has been forced to apologize again after it was discovered that unauthorized people could gain access to mortgage information on its website. Despite the apology, it refused to admit that any data leak had occurred, and said it has suspended the online search function and is improving security measures. Neona Wang,…
OXO Discloses MageCart Attack That Targeted Customer Data on Oxo.com
Lawrence Abrams reports: United States based kitchen utensil manufacturer OXO International disclosed a data breach that spans numerous periods over two years. This breach notification states that customer and payment information may have been exposed and further research by BleepingComputer indicates this was most likely a MageCart attack. In a data breach notification filed with…
DiscountMugs.com says four months of customer credit cards stolen by hackers
Zack Whittaker reports: DiscountMugs.com, a large online custom mug and apparel store, had a four-month-long data breach just before the busy Christmas holiday season. The company said in a letter to state attorneys general that hackers siphoned off credit card numbers from customers who made orders through its site between August 5 and November 16, 2018…