Here’s the FTC’s press release on an enforcement action I had noted on this blog when it originally reported by Courthouse News: At the request of the Federal Trade Commission, a federal court has ordered two debt sellers that posted the sensitive personal information of more than 70,000 consumers online to notify the consumers and…
Category: Business Sector
BrowserStack analysis: unpatched inactive machine compromised by shellshock vulnerability
BrowserStack sent DataBreaches.net the following analysis, which is being emailed to all their users: As you may already know, BrowserStack experienced an attack on 9th November, 2014 at 23:30 GMT during which an individual was able to gain unauthorized access to some of our users’ registered email addresses. He then tried to send an email…
Eastern Iowa Airport reveals customer data breach
AP reports: The Eastern Iowa Airport in Cedar Rapids is revealing a data breach that may compromise the credit card information of customers who paid to park there. The airport said Tuesday that customers who used credit and debit cards to pay for public parking between Sept. 29 and Oct. 29 are at risk and…
AMMO TO GO’S remarkable response to data breach
Nasir Pasha, Esq. writes: Earlier this month, AmmoToGo.com, an online ammunition retailer, sent out an e-mail to customers disclosing the theft of consumer information including e-mail addresses and passwords. The e-mail provided a link to a password reset page and offered assistance to stop possible SPAM from anyone who might have purchased the list. It’s a remarkably pro-active…
UK: Company director fined for illegally accessing mobile phone company’s customer database
From the Information Commissioner’s Office: A company director has been fined after illegally accessing one of Everything Everywhere’s (EE) customer databases. Matthew Devlin, 25, from Halifax, Yorkshire, used details of when customers were due a mobile phone upgrade to target them with services offered by his own telecoms companies. He had impersonated a member of…
UK: Employee at Bradford-based Morrisons faces fraud charge over staff data theft
There’s an update to a breach reported earlier this year. Telegraph & Argus reports: A Morrisons employee has been charged with fraud after an investigation into the theft of payroll data from the supermarket firm relating to thousands of members of staff. Andrew Skelton has also been charged with an offence under the Computer Misuse Act and…