The Information Commissioner’s Office announced that Aspers (gaming operator for Milton Keynes casino) has signed an undertaking after violating the Data Protection Act. The undertaking explains that an employee, trying to e-mail personnel data for a new office to central payroll, accidentally emailed the personal data of 219 employees to an external – and incorrect…
Category: Business Sector
NJ district court certifies two issues for interlocutory appeal in FTC v. Wyndham
In April, Judge Esther Salas denied Wyndham’s motion to dismiss the FTC’s complaint stemming from what the FTC alleges were unreasonable data security practices that put consumers at risk of harm. The FTC’s complaint was brought under Section 5 of the FTC Act, and Wyndham had challenged their authority to enforce data security as well as their…
Card Breaches at Car Washes
Brian Krebs reports: An investigation into a string of credit card breaches at dozens of car wash locations across the United States illustrates the challenges facing local law enforcement as they seek to connect the dots between cybercrime and local gang activity that increasingly cross multiple domestic and international borders. Read more on KrebsOnSecurity.com. Some of the…
Yo founder apologizes for hack – and hires one of his hackers
Alex Hern provides an update: Zero-character messaging app Yo has apologised for getting hacked – and has hired one of the hackers to improve its service. The app, which does nothing more than let users send each other “Yo’s” [sic], messages containing nothing but the word “Yo”, confirmed it was the victim of a hack on…
#YO_NO! Messaging app ‘Yo’ gets hit by hackers
No one could have possibly seen this coming, right? Shaun Nichols reports: Just days after the Yo app debuted to much fanfare (and head-scratching), the mono-message social tool has fallen prey to hackers. A group of students from Georgia Tech University claim via TechCrunch to have accessed the application’s entire user database, and gained the ability to obtain…
LinkedIn vulnerability to MITM attacks puts your data at risk – Zimperium
Zimperium Mobile Defence says that their testing found that LinkedIn users are at risk of Man-in-the-Middle Attacks: What information is vulnerable? Using basic MITM, we found that an attacker can extract a LinkedIn user’s credentials, hijack their session to gain access to all other LinkedIn information and impersonate the user. The following information is exposed,…