Peter A. Kurtz and Craig A. Newman write: It is not enough for companies to establish policies and procedures designed to prevent the misuse of material nonpublic information. Companies must also enforce those policies and procedures. That’s the lesson from the U.S. Securities and Exchange Commission’s recent settlement with Mizuho Securities USA LLC (“Mizuho”), a broker-dealer,…
Category: Business Sector
Salesforce API error may have caused data leak
Tom Allen reports: Cloud computing firm Salesforce has warned customers that their information may have been shared with other customers’ accounts, due to an API error. In a security advisory, the CRM company says it became aware of the issue on the 18th July. The error impacted ‘a subset’ of Marketing Cloud customers using the…
Fashion Nexus reports 650k affected by hack by “white hat hacker” or “ethical hacker”
Tim Clark reports: Details including the email and home addresses of around 650,000 fashion shoppers were stolen following a security breach at ecommerce platform provider Fashion Nexus. The data breach allowed hackers to access customer details from fashion brands including Elle Belle Attire, AX Paris and Traffic People. Online fashion retailers Perfect Handbags and DLSB…
NY: GE engineer accused of data theft back in court
Lynzi Deluccia reports: The GE engineer accused of stealing secret information from his work was back in court on Thursday. Official court documents show the Niskayuna man is in charge of other companies in China that use the same turbine technology as GE. A 10-page affidavit reveals Zheng was a master at taking the information,…
EXCLUSIVE: Creditmate.in developer’s goof left 19,000 consumers’ credit reports unsecured
By Dissent Doe and Lee Johnstone On July 27, an independent researcher known as “Flash Gordon” (@s7sins on Twitter) contacted DataBreaches.net and Lee Johnstone to report that during a routine keyword search on Google, he had found numerous credit reports from Indian consumers exposed. Identifying the owner of the database was not easy in this…
Forum post claims breach of 850k users’ information; leak from recruitmilitary.com?
Lee Johnstone reports on a leak involving a non-profit organization that tries to match employers with job seekers who are veterans: Today a user has posted a new thread to a known forum that makes claim of an breach of over 850,000 US military officers personal information. The user who goes by the name booloop…