Tom Spring reports: A cache of data including 3.3 million user credentials belonging to Hello Kitty parent company Sanrio surfaced over the weekend. The breach was originally reported in December 2015, but at the time Sanrio denied any data was stolen as part of the breach. The breach was tied to a misconfigured MongoDB installation that…
Category: Business Sector
TwoPlusTwo Poker Forum Hacked; Personal Data Stolen and Offered for Sale
FlushDraw reports: The world’s largest online poker discussion forum, TwoPlusTwo, has again seen its virtual defenses breached. The site’s operators have confirmed that the forum was hacked at some point late in 2016, with the personal data then being offered for sale elsewhere on the Internet. The hacking and theft of the personal information was discovered…
UK: £150,000 fine for insurance company that failed to keep customers’ information safe
From the Information Commissioner’s Office: The ICO has fined Royal & Sun Alliance Insurance PLC (RSA) £150,000 following the loss of the personal information of nearly 60,000 customers. An ICO investigation looked at the theft of a hard drive device containing 59,592 customers’ names, addresses and bank account details including account numbers and sort codes. The device…
ESEA hacked, 1.5 million records leaked after alleged failed extortion attempt
Steve Ragan reports: E-Sports Entertainment Association (ESEA), one of the largest competitive video gaming communities on the planet, was hacked last December. As a result, a database containing 1.5 million player profiles was compromised. Citing LeakedSource, Steve reports that there was an alleged extortion demand, but that has been neither confirmed nor disconfirmed by ESEA…
Waterly app potentially exposed up to 1 million Israelis’ details- researcher
A vulnerability in a mobile application that many Israelis use to pay their water or other municipal bills may have left 860,000 – 1,000,000 users at risk of account takeover or theft of their personal information. The Waterly app, by M.G.A.R. Ltd, allows users to sign up to pay their water bills. As part of the process, signing up creates…
PA: Alleged computer hacker pleads not guilty, heads to trial in Feb.
James Halpin reports: A city man facing federal computer hacking charges pleaded not guilty Wednesday. Justin Bodnar, 27, is charged with one count each of illegally accessing a protected computer and intentionally damaging a protected computer connected to incidents in 2012 and 2013. Prosecutors allege he accessed the emails of someone in an attempt to…