December 30, 2013 ‘wichcraft Operating, LLC recently learned that an unauthorized party gained access to our systems, compromising the payment card information of certain customers who made purchases at a ‘wichcraft location in New York or San Francisco using a payment card from approximately August 11, 2013 to October 2, 2013. Based on our investigation,…
Category: Business Sector
Omniquad Surf Wall Remote injects string into the browser user agent that identifies users – claim
Back in October 2010, I noted a breach involving managed security services provider Omniquad. Omniquad acknowledged the breach that involved helpdesk tickets leaking online, but the firm’s managing director, Daniel Sobstel, subsequently claimed that Webroot reseller Infosec Technologies started contacting his customers and passing on misleading information about the size of the data breach. Now…
T-Mobile USA customers to be notified of security breach at supplier’s (update 2)
It looks like T-Mobile USA will be sending out breach notification letters to customers after the New Year. A template of their notification letter, uploaded today to California’s breach site, explains: We are writing to inform you of a recent incident of unauthorized access to a file stored on servers owned and managed by a…
Following hack, RegistratioNation discovers some customer data was inadvertently being stored on its server (updated)
RegistratioNation is a provider of automated online payment processing and database management for event registrations. On December 23, their attorneys notified the New Hampshire Attorney General’s Office of an intrusion that occurred on November 4, 2013. The intrusion was discovered on November 22, and during investigation, the firm discovered that although payment card information was supposed…
Orient-Express Hotels notifies guests after data security breach (updated)
The Orient-Express Hotels Ltd. and its subsidiaries have notified an unspecified number of customers of a breach involving their credit card information. On September 24, 2013, the luxury travel firm learned that an unauthorized individual had gained access to seven corporate e-mail accounts between July 2013 and September 24. Customers’ names, payment card numbers, card…
Damned if you do, damned if you don’t?
Kevin G. Staker of StakerLaw Tax and Estate Planning Law Corporation is notifying clients that a backup drive with their Social Security numbers and assets information was stolen from his home in a burglary on December 20. The irony of the backup drive being in his home in case there was an office fire was not…