Those of us who read breach notifications to state attorneys general (yes, we have no life), likely all spotted a notification in mid-January involving Pharmaca. The notification stated that in December, 2018, Pharmaca started receiving reports of payment card fraud. Their investigation, with help from security experts, revealed that malware may have captured customer payment…
Category: Business Sector
Indecent disclosure: Gay dating app left “private” images, data exposed to Web
Sean Gallagher reports on yet another exposed Amazon bucket: Jack’d, a “gay dating and chat” application with more than 1 million downloads from the Google Play store, has been leaving images posted by users and marked as “private” in chat sessions open to browsing on the Internet, potentially exposing the privacy of thousands of users….
Trakt tardily notifies users of data breach that took place over four years ago
Mark Wycislik-Wilson reports: Users of Trakt — a service for “scrobbling”, or tracking the movies and TV shows you watch in the likes of Plex and Kodi — have received emails from the company notifying them of a data breach that took place way back in 2014. Trakt says that although the security breach took…
Eskom data leak exposes sensitive customer information – Security researcher
If you don’t respond and respond appropriately quickly when people attempt responsible disclosure, don’t be surprised when your security problem is aired publicly on Twitter. Security researcher Devin Stokes has disclosed a vulnerability in Eskom’s information systems that is leaking customer data. Stokes said that he took the decision to go public after Eskom failed…
Huddle House payment card breach could potentially impact 300,000 customers – researchers
Georgia-based Huddle House opened in Decatur, Georgia, in 1964. Over the years, they have cultivated their brand as the kind of place where customers can get a good meal any time of the day, with their breakfast menu having become a big favorite. Huddle House currently has more than 350 franchises across the country. Last Friday,…
Russian Darknet Forum Selling Access to U.S. News Sites
M.H.n reports: Sixgill, an Israeli threat intelligence company, recently revealed that a Russian-language darknet forum has been selling access to the content management systems of a variety of news sites. According to the company, the illicit trade has been going on since October 2018. One bundle that the darknet website offered contained logins to 1,425…