Robert McMillan reports: A Bank of America call center employee has pleaded guilty to charges that he stole sensitive client information and then tried to sell it for cash. Brian Matty Hagen pleaded guilty last week to one count of bank fraud. According to court filings he allegedly recorded customer account information when BofA customers…
Category: Breach Incidents
Ca: 15-year-old caught in Richmond with hundreds of skimmed credit cards
And what is your teenager doing for work this summer? Vivian Luk reports: A 15-year-old boy was arrested last month at a Richmond gas station for connection to a credit card skimming operation. […] The boy is suspected of copying credit card information from several hundred customers without their knowledge, and then selling the stolen…
Appeals court absolves firm that exposed man’s SSN
What constitutes a privacy harm? For those of us covering data breaches and privacy breaches, there’s been a somewhat disturbing trend by courts to restrict the notion of “harm” to unreimbursed financial harm due to a breach. Worry, embarrassment, time lost, and increased risk of future harm are recognized as being consequences, but generally, plaintiffs…
Nl: City sends wrong file
Seen at Karin Spaink’s blog: After requesting a directory of the services of city X, a citizen of that city was sent not that directory, but a file containing the names of the circa 2800 people living in that city who may not renew their passport or who have to hand in their passport. Reasons…
ACH Fraud Sparks Another Suit
Linda McGlasson reports: In another round of bank vs. customer, a Maine business has sued its bank, alleging that the institution failed to prevent fraudulent ACH transactions totaling more than $500,000. Patco, a Sanford, Maine-based construction company, had its corporate bank account raided over a six-day period last May by cyber thieves who were able…
NHTSA’s Complaint Database Leaks Private Information Like A Sieve
Edward Niedermeyer reports: Our Canadian pal carquestions took a look through NHTSA’s public complaint database, and found four examples of personal information that NHTSA should have redacted but didn’t. You know, things like names, birth dates, social security numbers, addresses, VINs, and drivers license numbers. And he found those four after searching through “12 or…