@hackinyolife (“Fear”) has posted data and a claim that the Bank of North Dakota was hacked by members of @TheFamilyMethod The transaction logs dumped in a paste include fields like “ACCOUNT, ACCOUNT NAME, AMOUNT, AUTH CODE, AVS, BRAND, CARD ENDING, CVD, FIRST NAME, LAST NAME, MERCHANT TRANS. ID, OPTION CODE, DATE, TXN ID, CONF. NO.,…
Category: Breach Incidents
BIMCO: Security Breach in Anti-Piracy Program
No, it’s not copyright piracy we’re talking about here. MarEx reports: On Monday, BIMCO [Baltic and International Maritime Council] and The Standard Club issued a warning regarding an alleged security breach in the Maritime Trade Information Sharing Center (sic), Gulf of Guinea (MTISC-GoG), potentially resulting in the release of ships’ data to pirates. The breach has…
Texas man found with personal info belonging to dozens of identity theft victims
FOX News reports: A man is facing forgery charges after police say they found him with the personal information belonging to dozens of people. Antonio Moreno, 27, was arrested at a hotel in the Medical Center area when investigators say he used someone else’s credit card to pay for the room. Moreno was with others…
Miami Resident Pleads Guilty to Participation in an Identity Theft Tax Fraud Scheme Involving the IRS “Get Transcript” Service
A Miami resident pled guilty for his participation in an identity theft tax fraud scheme where he used stolen personal identification information (PII) to access the IRS “Get Transcript” service and obtain tax records of his identity theft victims. Marvin Ricardo Herard, 26, of Miami, pled guilty to one count of wire fraud, in violation…
uKnowKids updates its breach report and answers a question I posed
There’s an update to uKnowKids’ breach disclosure, here. They assert that their analysis shows only one IP address – presumably researcher Chris Vickery’s – downloaded any data from their misconfigured database. They do not name the provider responsible for security the database. According to their statement, the misconfigured instance of the database occurred on December…
RubberStamps.net, Incipio notify customers of breaches
While uKnowKids had a somewhat despicable disclosure of their breach that involved shooting the messenger, here are two positive examples of breach disclosures I came across this week: RubberStamps.net notified about 7,000 customers that its web site was compromised between November 3, 2015 to December 11, 2015. In a well-written letter, Scott Lee, the President and CEO, Superior Labels, Inc. explained that…