Remember how I posted about how some frustrated researchers at Gibson Security had gone public with a SnapChat vulnerability that the firm allegedly hadn’t addressed? Well, now it seems 4.6 million SnapChat users’usernames and phone numbers have been leaked.
Category: Business Sector
‘Wichcraft notice to customers
December 30, 2013 ‘wichcraft Operating, LLC recently learned that an unauthorized party gained access to our systems, compromising the payment card information of certain customers who made purchases at a ‘wichcraft location in New York or San Francisco using a payment card from approximately August 11, 2013 to October 2, 2013. Based on our investigation,…
Omniquad Surf Wall Remote injects string into the browser user agent that identifies users – claim
Back in October 2010, I noted a breach involving managed security services provider Omniquad. Omniquad acknowledged the breach that involved helpdesk tickets leaking online, but the firm’s managing director, Daniel Sobstel, subsequently claimed that Webroot reseller Infosec Technologies started contacting his customers and passing on misleading information about the size of the data breach. Now…
T-Mobile USA customers to be notified of security breach at supplier’s (update 2)
It looks like T-Mobile USA will be sending out breach notification letters to customers after the New Year. A template of their notification letter, uploaded today to California’s breach site, explains: We are writing to inform you of a recent incident of unauthorized access to a file stored on servers owned and managed by a…
Following hack, RegistratioNation discovers some customer data was inadvertently being stored on its server (updated)
RegistratioNation is a provider of automated online payment processing and database management for event registrations. On December 23, their attorneys notified the New Hampshire Attorney General’s Office of an intrusion that occurred on November 4, 2013. The intrusion was discovered on November 22, and during investigation, the firm discovered that although payment card information was supposed…
Orient-Express Hotels notifies guests after data security breach (updated)
The Orient-Express Hotels Ltd. and its subsidiaries have notified an unspecified number of customers of a breach involving their credit card information. On September 24, 2013, the luxury travel firm learned that an unauthorized individual had gained access to seven corporate e-mail accounts between July 2013 and September 24. Customers’ names, payment card numbers, card…