Darren Fishell reports: Malware on a computer at the Brunswick Hotel and Tavern exposed names and credit card information for as many as 2,600 guests who stayed at the hotel between November 2014 and July 2015. The company managing the hotel notified customers of the breach in a letter dated Aug. 21 and posted to…
Category: Business Sector
UK: WHSmith “bug” spams confidential customer details from “contact us” form
James Temperton reports: WHSmith‘s website has randomly sent out hundreds of private emails to people on its mailing list. The issue appears to come from a broken “contact us” form, with anything customers send through the form being erroneously sent to hundreds of WHSmith’s customers. Details included in the emails include real names, phone numbers,…
Former IT Manager at Smart Online Inc. Pleads Guilty to Sending Damaging Computer Code to Former Company’s Servers
A former information technology manager pleaded guilty yesterday to sending damaging computer code to servers at his former employer, a software company. Nikhil Nilesh Shah, 33, of Union, New Jersey, pleaded guilty before U.S. Magistrate Judge Robert T. Numbers II of the Eastern District of North Carolina, to one felony count of causing the transmission of…
Backblaze Faces Class Action Over Unencrypted Hard Drives
Tamara Burns reports: Backblaze Inc., a company specializing in computer data backup and recovery, is the subject of a proposed class action lawsuit filed last Friday. The class action lawsuit alleges Backblaze puts private customer data at risk by shipping them unencrypted external storage drives. [….] Plaintiff Scott Hellervik takes issue with Backblaze’s procedures for…
IL: Village Pizza & Pub notifies customers of data security breach at TransformPOS
I wonder how many other TransformPOS clients may be notifying customers. So far, I do not see any notice on TransformPOS’s web site about this incident. From Village Pizza & Pub’s press release: On July 27, 2015, Village Pizza & Pub learned that the company that provides its point-of-sale payment card processing system, TransformPOS, had been…
Russian-speaking hackers breach 97 websites, many of them dating ones
Jeremy Kirk reports: Russian-speaking hackers have breached 97 websites, mostly dating-related, and stolen login credentials, putting hundreds of thousands of users at risk. Many of the websites are niche dating ones similar to Ashley Madison, according to a list compiled by Hold Security, a Wisconsin-based company that specializes in analyzing data breaches. A few are job-related…