Rafia Shaikh reports: Trusted Western Union with your money? It appears the company may have lost your information to hackers. While the company talks about testing transactions with Ripple and expects higher sales in 2018, it seems it’s having some troubles with security. Some of the Western Union consumers started receiving a letter from the…
Category: Business Sector
Etsy Discloses Tax-Related Privacy Breach
Ina Steiner reports: Etsy confirmed a privacy breach impacted about 1,500 sellers. The incident was caused by human error and was not related to any hacking or website vulnerability. The incident occurred on January 30, 2018, when an Etsy seller requested a copy of their 2016 federal 1099 tax form. Etsy sent a letter to…
Unsecured server exposed thousands of FedEx customer records
Zack Whittaker reports: FedEx has exposed private information belonging to thousands of its customers after a legacy server was left open without a password. The discovery was made by security researchers at the Kromtech Security Center, which posted details of the exposure alongside ZDNet. The data, hosted on a password-less Amazon S3 storage server, was…
Hacker extracts customer data from Canadian Telecom Firm after rebuttal
Waqas writes: A hacker using the alias NullHumanity claims that they have managed to identify a flaw in the customer login system of Freedom Mobile, a Canadian wireless telecommunications provider and claims to obtain private details of customers including their phone number, address, call history and other information effortlessly. The findings were reported by MobileSyrup. The…
The strange case of the data breach that stayed online for a month
So the headline’s a bit of clickbait as there’s nothing really strange going on, but it’s still a useful reminder situation….. Simon Sharwood and Kat Hall report on a case where someone found a spread sheet exposed/indexed by Google. And although the company believed that they had gotten everything removed, weeks later it was still…
AMP Global Clearing LLC fined for lax security
A monetary penalty resulted from a misconfigured backup uncovered by Chris Vickery, who was then with Kromtech Security. It was reported publicly in April, 2017 by a number of outlets, including The Daily Dot. This was one of those cases where a vendor’s mistake turned out to be costly. The Commodity Futures Trading Commission (CFTC)…