Law360 reports: An Illinois federal judge on Tuesday tossed a proposed class action alleging that Neiman Marcus Group LLC negligently failed to protect 350,000 customers’ credit card information prior to a 2013 hack into the high-end department store’s servers, ruling the plaintiffs had lacked Article III standing. Granting the defendant’s motion to dismiss, U.S. District…
Category: Breach Incidents
Banks: Credit Card Breach at Home Depot – Krebs
Brian Krebs reports: Multiple banks say they are seeing evidence that Home Depot stores may be the source of a massive new batch of stolen credit and debit cards that went on sale this morning in the cybercrime underground. Home Depot says that it is working with banks and law enforcement agencies to investigate reports of suspicious…
Two California Residents Sentenced To Prison For Computer Theft From LendingTree; Former Employee Sold Unauthorized Access
U.S. District Judge Robert J. Conrad, Jr. sentenced two California residents to prison on Tuesday, August 26, 2014, for their role involving computer theft from a nation-wide online mortgage broker (the “company”). Brian Matthew Rich, 40, of Laguna Beach, Calif., was sentenced to 24 months in prison, followed by two years of supervised release. Marcus…
KPCB notifies employees and partners of laptop theft
Kleiner Perkins Caufield & Byers is a venture capital firm located in Menlo, California. Over the weekend of July 19-20, their building and office security were circumvented and several laptops were stolen. Two of the laptops were used by personnel in their finance department and contained employees’ and partners’ names, contact information, Social Security numbers and…
Does Cybovar impact the security of your credit report?
In the wake of last week’s announcement that Russian hackers had obtained 1.2 billion user ids with passwords, the FTC issued some guidance that included changing our passwords. But while people may change their passwords to their own accounts, will they think to change passwords to databases that don’t hold their data, but others’ personal information?…
Reminder to terminate login credentials of terminated employees
Today’s reminder is from a breach I came across in reviewing records obtained in response to a Freedom of Information Act request I filed. American Medical Response is a billing/collections agency. In the course of business, they routinely access a database maintained by Acxiom Insight. Apparently, login credentials of an inactive employee were never properly…