On January 4, Time Inc. alerted the New Hampshire Attorney General’s Office that a customer service employee in Florida may have misused customer credit card data provided by several customers as part of their calls to customer service. The employee was terminated, and Time reported the matter to law enforcement. On December 31, Time sent…
Category: Breach Incidents
Network flaw causes scary Web error
Jordan Robertson reports: A Georgia mother and her two daughters logged onto Facebook from mobile phones last weekend and wound up in a startling place: strangers’ accounts with full access to troves of private information. The glitch – the result of a routing problem at the family’s wireless carrier, AT&T – revealed a little known…
Pizza delivery man cops to life in DarkMarket
Dan Goodin reports: A former London pizza delivery man faces a 10-year prison sentence after admitting he helped found the notorious DarkMarket forum for computer crime, several news sites reported. Renukanth Subramaniam, a 33-year-old Sri Lanka-born man from North London, pleaded guilty at Blackfriars Crown Court in London to conspiracy to defraud and furnishing false…
IL: More charges, suspects in ID theft ring
Matt Hanley reports: An identity theft ring uncovered in Oswego last year involved more than just thefts in Kendall County. Police across the Fox Valley quietly made arrests they hoped would lead to other suspects, while Oswego’s larger investigation continued for nearly a year. This week, Oswego police announced four people had been charged with…
Google Hack Attack Was Ultra Sophisticated, New Details Show
Kim Zetter reports: Hackers seeking source code from Google, Adobe and dozens of other high-profile companies used unprecedented tactics that combined encryption, stealth programming and an unknown hole in Internet Explorer, according to new details released by researchers at anti-virus firm McAfee. “We have never ever, outside of the defense industry, seen commercial industrial companies…
NYC: Audit Report on the Controls of the Administration for Children’s Services Over Personally Identifiable Information
The comptroller’s December 2009 audit report can be found here. ACS collects a lot of PII on many children in NYC, including medical information, complaints of child abuse, etc. The most significant audit findings included inadequate password security for the local network and Blackberry devices. With respect to the former, the audit found 15 instances…