This will be one for the books… and Hollywoood spinoffs. Jessica Dye and Jim Finkle of Reuters report: The government charged eight people with using data obtained by hacking into two credit card processors in a worldwide scheme that netted some $45 million within hours, a crime prosecutors described as one of the biggest bank…
Category: Breach Incidents
Washington state Administrative Office of the Courts hack due to unpatched ColdFusion vulnerability
Rachel La Corte has more on the hack reported earlier today on this blog: The breach happened due to vulnerability in an Adobe Systems Inc. software program, ColdFusion, that has since been patched, court officials said. The hack happened sometime after September but wasn’t caught until February, they said. […] Mike Keeling, the courts’ information…
160,000 Social Security numbers and 1 million driver license numbers exposed in hack of WA Administrative Office of the Courts
Rachel La Corte reports: The Washington state Administrative Office of the Courts was hacked in February, and up to 160,000 Social Security numbers and 1 million driver license numbers may have been accessed during the data breach of its public website. Officials with the courts announced Thursday that so far, it has been confirmed that…
WI: Hack of Cooperative Education Service Agency 10 web portal reveals faculty passwords
WEAU reports: A school district service agency says teachers’ passwords were hacked and Tuesday night it’s getting out the message to the people affected. CESA 10’s administrator tells WEAU its old web portal where teachers registered for classes was hacked, and it’s now using a new site that is not affected. CESA, which stands for…
If you don’t know whether data were extracted, why say the risk of harm is low?
A breach notification letter submitted this week to the Vermont Attorney General’s Office by WorldVentures Marketing had me grinding my teeth. According to the notification to consumers, WorldVentures recently became aware of unauthorized access to their servers. The access may have occurred from October 23, 2012 through March 14, 2013. The server held customers’ credit card numbers…
Tomren Wealth Management notifies clients of server compromise; access to client data uncertain
Tomren Wealth Management sent out notification letters recent following a server breach that occurred between February 21 and March 6, when the intrusion was discovered. “The forensic examiners found spamming software was loaded onto the machine in a failed attempt to send out ‘junk” spam emails, however, we have been unable to determine whether the…