The Information Commissioner’s Office (ICO) has served a monetary penalty notice on Jala Transport, a small money-lending business, after the theft of an unencrypted portable hard drive containing its customer database. The firm was regulated by the Financial Services Authority (FSA) at the time of the incident. According to the notice, on August 3, 2012,…
Category: Financial Sector
Equity Trust Company hacked from overseas IP addresses
A breach involving Equity Trust Company in South Dakota also flew under the media radar this year, it seems. In a letter dated April 16 to the Maryland Attorney General’s Office, Michael Dea, President of the Ohio-headquartered firm, writes that at the end of January, they discovered that part of their network had been accessed…
Experian reports another breach of its credit report database (update 2)
I haven’t been seeing as many breach reports by Experian this year, which could be a good sign, although it just could be that some states haven’t updated their breach lists in while. In any event, one just showed up on New Hampshire’s site that elevated an eyebrow. In a letter dated September 16 signed…
Barclays Bank Cyber Theft: 8 Arrested For Allegedly Hacking Computer System, Stealing $2 Million
Eight men have been arrested on suspicion of stealing 1.3 million pounds ($2 million) from a Barclays bank branch by tapping into its computers, British police said Friday. […] Detective Supt. Terry Wilson said one of the arrested men is the “Mr. Big” of British cybercrime. Police suspect that in both cases a gang member…
Windhaven Investment Management notifies customers months after vendor-maintained server was hacked (update 3)
Windhaven Investment Management is notifying clients that a server maintained by an unnamed vendor suffered an unauthorized intrusion several months ago. As a result, customers’ names, account numbers, custodians, and investment positions for their Windhaven account(s) may have been accessed. Neither Social Security numbers nor dates of birth were exposed. Windhaven learned of the intrusion last month, but…
PLS Financial notifies customers after vendor’s programming error allowed others to access their information (update)
PLS Financial is notifying customers that a programming error by an unnamed web site operator exposed their personal information to other site users. The programming error, which occurred on July 11, allowed loan applicants to potentially view a restricted part of the site containing names, postal and e-mail addresses, and Social Security numbers. During the…