Michael Lee reports: Vodafone Iceland is now in the middle of an investigation into how its website was attacked and customer data information, including SMS messages, were leaked to the public. On November 30, the company’s Icelandic website was defaced by attackers and subsequently taken offline. At the time, Vodafone did not believe that any…
Category: Business Sector
AHW reports online stores compromised by malware
AHW LLC in Illinois operates a number of online stores. In May, and as noted previously on this blog, they notified the New Hampshire Attorney General’s Office that Green Fun Store (greenfunstore.com) had apparently been comprised during the fourth quarter of 2012. They were alerted to the breach in March by their credit card vendor, Evalon,…
MD: Sensitive info found in now-defunct law group’s dumpster
A now-defunct law firm gets itself bad press for insecurely disposing of client files: We’re not in the habit of picking through the trash, but sometimes we’re willing to get our hands dirty, especially when we hear your information has been tossed aside like it’s worthless. We went digging in a Baltimore County dumpster after…
QuizUp security flaw sends your personal data to other players
You may want to hold off on playing popular trivia game QuizUp, as the game may be sending your personal information to other players. This security and privacy flaw was detected by developer Kyle Richter and described in a recent blog. According to Richter, the QuizUp game sends your personal information to other players via…
PSN EU resets many user passwords as a “precautionary measure”
Jeffrey Matulef reports: Sony Europe has reset the passwords for a number of PSN users as a “precautionary measure.” The only problem is it forgot to tell people it was doing this, leading to panic as many inexplicably were unable to log in to Sony’s online service. Read more on EuroGamer.
Ouch: Tumblr gaffe exposed passwords in plain text
Tumblr, which had to apologize to iOS users for revealing email addresses and passwords back in July, may need to start apologizing again for what appears to be another screw-up. A DataBreaches.net reader writes: I received a notice from Tumblr that congratulated me for 1 year with them. Problem is, instead of using my user…