Bogdan Botezatu reports: A massive numbers of Prodigy subscribers in Mexico have had their email conversations exposed overnight because of a security flaw in the company’s mobile e-mail and web-based mail systems. According to a news report by El Economista, the flaw allowed search engines to simply index private conversations and list them on the…
Category: Breach Incidents
Sacramento RT worker suspected in ID theft of 30 co-workers
A Sacramento Regional Transit (RT) employee was relieved of duty after allegedly stealing personal information from at least 30 co-workers to obtain thousands of dollars in payday loans, according to an internal memo. Watch the video on ABC.
Yep, let’s just keep discarding sensitive info…
WPMI reports from Alabama on what they found when they went dumpster diving at about a dozen title loan and cash advance businesses in the Mobile, Alabama area: In the dumpster out front of Alabama Title Loans on busy Springhill Avenue, I found dozens of documents, not shredded, and all full of personal information. “Here’s…
Boxes with personal info found in trash
We really need stronger laws protecting the security and disposal of paper records. Today’s example is from Beaverton, Oregon: Seven large boxes filled with personal information of clients from the Sylvan Learning Center, including names, birth dates, Social Security numbers and credit card information, were found in a Dumpster in Beaverton. Read more on KOIN….
Bank of Scotland receives £75K penalty after three year fax blunders
The Information Commissioner’s Office (ICO) has served the Bank of Scotland with a monetary penalty of £75,000 after customers’ account details were repeatedly faxed to the wrong recipients. The information included payslips, bank statements, account details and mortgage applications, along with customers’ names, addresses and contact details. The documents were faxed over a three year period, with the…
Plaintiff in LinkedIn lawsuit says harm is irrelevant and the issue is deception
MainJustice has an update to the LinkedIn lawsuit concerning their massive hack last year. As expected, LinkedIn moved to dismiss on the grounds that the plaintiff hasn’t suffered any harm and hasn’t proved they used outdated security, but the plaintiff responds that harm is irrelevant – she wouldn’t have purchased a premium account if it…