Dian Schaffhauser reports: A Washington State man has been sentenced to 10 years in prison after pleading guilty to 31 counts of criminal activity, most related to a school district data breach. Christopher Berge, now 21, was a student at Mountain View High School in Evergreen Public Schools when he “shoulder surfed”–physically observed–a password used…
Category: Breach Incidents
NY: Cops: Medical records clerk stole patients’ identities
Christen Gowan reports: A medical records clerk from St. Peter’s Hospital was arrested on charges of stealing patients’ personal information and using it to open credit card accounts, police said, and more unknowing victims could be out there. Albany County Sheriff’s deputies arrested Johnathan Harwood, 23, of Van Buren Avenue, on Monday for opening credit…
Credit applications found near store Dumpster
Lisa Beisel reports: Reginald Faust of Annapolis was walking with his wife when he noticed a piece of paper – a credit application for the Room Store, he later realized – on the ground near a Dumpster in the shopping center across from the mall on Jennifer Road. He was one of several walkers in…
Atlassian hacked (update 1)
From the Atlassian company blog: Around 9pm U.S. PST Sunday evening, Atlassian detected a security breach on one of our internal systems. The breach potentially exposed passwords for customers who purchased Atlassian products before July 2008. During July 2008, we migrated our customer database into Atlassian Crowd, our identity management product, and all customer passwords…
FINRA Fines D.A. Davidson & Co. $375,000 for Failure to Protect Confidential Customer Information
The Financial Industry Regulatory Authority (FINRA) issued the following press release today: The Financial Industry Regulatory Authority (FINRA) announced today that it has fined D.A. Davidson & Co., of Great Falls, MT, $375,000 for its failure to protect confidential customer information by allowing an international crime group to improperly access and hack the confidential information…
Court to Notify Countrywide Customers About a Class Action Settlement Involving the Theft of Personal and Financial Data
A press release from the United States District Court for the Western District of Kentucky: A notification program began today in the United States, including Puerto Rico and recognized territories of the U.S., as ordered by the United States District Court for the Western District of Kentucky (the “Court”), to alert people who provided their…