Kimpton Hotels & Restaurants have provided an updated press release after completing the investigation they began in July. The relevant parts of their press release: Findings from the investigation show that malware was installed on servers that processed payment cards used at the restaurants and front desks of some of our hotels. The malware searched…
Category: Business Sector
AU: OAIC accepts undertaking from ARC on Optus customer data breach
Corinne Riechert reports a follow-up to a breach previously noted on this site: The Australian Privacy Commissioner has accepted an enforceable undertaking from ARC Mercantile following a breach of personal customer data at the end of last year, which occurred when an ARC employee posted a spreadsheet of customers owing money to Optus on Freelancer.com. Read more…
KR: ‘Interpark hack was spearphishing scam’
There’s an update to the Interpark hack reported previously on this site. Won Ho-jung reports: A strategy known as spearsphishing was used in the hacking incident that leaked the personal information of over 10 million consumers registered with e-commerce site Interpark, according to the ICT Ministry and the Korea Communications Commission on Wednesday. According to the…
OneLogin reports security breach that exposed customers’ ‘Secure Notes’ data in clear text
Hyacinth Mascarenhas reports: Cloud-based identity access service OneLogin has announced a server security breach that allowed a hacker to access customer Secure Notes data due to a bug in the company’s logging system. The company said the breach occurred when an intruder managed to gain access to its logging system that stores logs and analytics…
That Dropbox hack was much bigger than previously revealed
So it only took like four years, but now we know. That 2012 Dropbox hack that recently led to additional password resets? The 2012 hack reportedly affected 68,680,741 accounts. And maybe someone can explain why in 2016 we’re all first finding out the scope of older breaches like this one and LinkedIn, Tumblr, and MySpace, to name just some….
Vietnamese hotel leaves customers’ credit card data exposed online
From the MacKeeper Security Research Center, another misconfigured database leaking data. This time, it’s the Silverland Hotel in Ho Chi Minh City, Viet Nam with thousands of unencrypted credit cards. According to their report, the total number of entries reached 6377 items (credit cards details in plain text). And this should not inspire confidence in potential hotel…