Angelica Mari reports: The Brazilian operation of international fashion retail clothing chain C&A has confirmed a cyberattack to its gift card platform. Data from customers who purchased gift cards was leaked such as ID numbers and email addresses, in addition to information including the amount loaded into the cards, order number and data of purchase….
Category: Business Sector
ZA: Hackers did not compromise our servers – Department of Labour
My Broadband reports: The Department of Labour has issued a statement confirming there was a recent attempted cyberattack on its website. The attack took place over the weekend, and the department’s IT unit confirmed it was a distributed denial of service (DDoS) attack – aimed at one of the department’s public-facing servers. Read more on…
Air Canada confirms mobile app data breach
Zack Whittaker reports: Air Canada has confirmed a data breach on its mobile app, which the airline said may affect 20,000 people — or 1 percent — of its 1.7 million app users. The company said it had “detected unusual log-in behavior” occurring between August 22-24. According to an email to customers, attackers may have…
Second Circuit Stands By Medidata “Spoofing” Decision
From Hunton Andrews Kurth: As reported on Hunton’s Insurance Recovery blog, the Second Circuit has rejected Chubb subsidiary Federal Ins. Co.’s request for reconsideration of the court’s July 6, 2018, decision, confirming that the insurer must cover Medidata’s $4.8 million loss under its computer fraud insurance policy. In July, the court determined that the loss resulted…
Spyware Company That Marketed To Domestic Abusers Gets Hacked
Lorenzo Franceschi-Bicchierai reports: A company that sells spyware to consumers specifically and openly marketing its product to domestic abusers got hacked. The hacker, who only goes by the initials L.M., told Motherboard in February that he gained access to the servers of TheTruthSpy, a company that sells an Android and iOS spy app to consumers,….
Fiserv Flaw Exposed Customer Data at Hundreds of Banks
Brian Krebs reports: Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that exposed personal and financial details of countless customers across hundreds of bank Web sites, KrebsOnSecurity has learned. Brookfield, Wisc.-based Fiserv [NASDAQ:FISV] is a Fortune 500 company with 24,000 employees and $5.7…