From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) issued Equifax Ltd with a £500,000 fine for failing to protect the personal information of up to 15 million UK citizens during a cyber attack in 2017. The incident, which happened between 13 May and 30 July 2017 in the US, affected 146 million customers globally….
Category: Business Sector
Update: Suspect Arrested for Huazhu Hotel’s Over USD50,000 User Data Theft
Xu Wei report: A hacker who disclosed nearly 500 million pieces of Chinese Huazhu Hotels Group’s user data, including bank accounts and identity cards, has been detained. The transaction that the suspect who tried to sell the data on the dark net has failed, the Shanghai-based hotel firm said on its website on Sept. 17. The person…
Hackers stole customer credit cards in Newegg data breach
Zack Whittaker reports: Newegg is clearing up its website after a month-long data breach. Hackers injected 15 lines of card skimming code on the online retailer’s payments page which remained for more than a month between August 14 and September 18, Yonathan Klijnsma, a threat researcher at RiskIQ, told TechCrunch. The code siphoned off credit card…
PH: Broadcaster ABS-CBN customer data stolen, sent to Russian servers
Charlie Osborne reports: Customers of ABS-CBN may be facing the possibility of the theft of their financial data due to a payment skimmer which has been discovered in the major Filipino broadcaster’s online store. According to Dutch security researcher Willem “gwillem” de Groot, the payment skimmer has been active since August this year. ABS-CBN is…
DealerBuilt Settles with New Jersey AG Over Data Breach
Hunton Andrews Kurth reports: On September 7, 2018, the New Jersey Attorney General announced a settlement with data management software developer Lightyear Dealer Technologies, LLC, doing business as DealerBuilt, resolving an investigation by the state Division of Consumer Affairs into a data breach that exposed the personal information of car dealership customers in New Jersey…
Another security breach at Grindr reveals users’ exact location
Tom Capon reports: Grindr’s security issues are once again in the spotlight as a third party app pinpointed users’ exact location. Despite constant reassurances from the app about the difficulties of exploiting their location technology, the latest security breach revealed how malicious parties can locate users. Discovered by blog Queer Europe, they used a third-party…