Brian Krebs reports: The breach at Target Corp. that exposed credit card and personal data on more than 110 million consumers appears to have begun with a malware-laced email phishing attack sent to employees at an HVAC firm that did business with the nationwide retailer, according to sources close to the investigation. Read more on KrebsOnSecurity.com
Category: Business Sector
Statement on Target data breach by HVAC vendor Fazio Mechanical Services
Statement on Target data breach Fazio Mechanical Services, Inc. places paramount importance on assuring the security of confidential customer data and information. While we cannot comment on the on-going federal investigation into the technical causes of the breach, we want to clarify important facts relating to this matter: Fazio Mechanical does not perform remote monitoring…
NC: Cryptolocker scambles US law firm’s entire cache of legal files
John E. Dunn reports: A small US law firm has bravely admitted losing its entire cache of legal documents to the Cryptolocker Trojan despite attempting to pay the $300 (£180) ransom in a bid to have them unscrambled. According to TV reports, Goodson’s law firm in the North Carolina state capital Charlotte [The Law Offices of Paul M. Goodson, P.C.] became the…
Weather Shield employees continue to experience difficulties with IRS after data theft 3 years ago
Since April 2011, this blog has covered the continuing – and concerning – saga of Weather Shield employees who became victims of ID theft and who continue to have problems filing their tax returns, year after year. And now it’s happening again. I thought the IRS was supposedly getting its act together on helping victims of…
Lawsuits over Nationwide Insurance data breach dismissed by court
Back in November 2012, Nationwide Mutual Insurance disclosed an attack on their network that compromised customers’ personal information. The breach turned out to be pretty large, with over 1 million affected. Two potential class action lawsuits were filed following the breach, including Galaria v. Nationwide and Hancox v. Nationwide. The Hancox case was transferred to…
Supercell hack reveals DAU and ARPDAU, access to internal emails
Matthew Diener reports: A hacker going by Ethical Spectrum has allegedly hacked Supercell‘s official Clash of Clans and Hay Day Facebook pages. Going one step further, the hacker posted an unverified screenshot which purports to show some enticing figures for Supercell – namely, its DAU [Daily Active User] and ARPDAU [verage Revenue Per Daily Active User]. It’s unclear as…