If you fell behind in your student loan repayments to the U.S. Education Department, “Mike Doe” (not his real name) may know about it. He didn’t want to know, but a vendor for NCO Financial Systems, the collection agency contracted by USED, recently sent him other students’ loan repayment collection statements. The statements included the individuals’ names,…
Category: Business Sector
Snelling Staffing discloses breach
Okay, here’s a breach report that had me scratching my head. See if this makes sense to you: a former Snelling Staffing employee tried to set up a cloud-based server at home and exposed employee information. But if s/he was a “former employee” at the time, why was s/he in possession of any employee information…
How to lose a customer with one email gaffe, Tuesday edition
An Account Executive at Square wanted to introduce herself to clients in her area, so she sent a friendly email to them today: Hi there, I wanted to reach out to let you know my team realigned territories and I will be your new point of contact moving forward. I’d love to set up a call…
Massachusetts AG Coakley Investigates Potential Data Breach Involving Major Credit Reporting Company; Issues Consumer Advisory
Press release from Massachusetts Attorney General Coakley: Following reports that criminals were able to gain access to a commercial database that contained the personal information, including social security numbers, of more than 200 million U.S. citizens, Attorney General Martha Coakley, along with attorneys general across the country, have opened an investigation into the data broker…
Court Ventures/U.S. InfoSearch/Experian breach resulted in ID theft – Krebs
Brian Kreb presents some evidence that the breach involving Court Ventures/U.S. InfoSearch/Experian* (discussed elsewhere on this blog) did result in harm to individuals, depite an Experian executive telling Congress in December 2013 that there had been no reports of harm from the breach. Of course, it never made any sense to any of us that…
University of Virginia, Spokeo, Indiana among eight more sites hacked by NullCrew (update1)
Students and employees of the University of Virginia (UVa) may be scratching their heads today and wondering what UVa can or will do to secure its servers better. The university, which was hacked in 2012 by @AnonAntidote and again in 2013 by a former UVa student known as @R00tTh3B0x, has reportedly been hacked yet again –…