If you purchased lingerie or other items from Phoenix-based Yandy.com, you may be getting a breach notification. Yandy reports that they became aware of the breach on August 18, and it involved customers’ names, postal and email addresses, card numbers, expiration dates, and CVV codes. Although the notification letter, signed only by “The Yandy Team,” does…
Category: U.S.
NCQA spots – and stops – ecommerce breach quickly
How quickly can your organization detect and stop a breach? It looks like the National Committee for Quality Assurance (NCQA) caught one pretty quickly, as it only affected customers making online purchases on September 3 between 2 am and 10 am. They called those affected, and by September 5, were sending out letters to those…
Home Depot Confirms Data Breach
From their web site today: Last Tuesday, September 2, we disclosed that we were investigating a possible breach of our payment data systems. We want you to know that we have now confirmed that those systems have in fact been breached, which could potentially impact any customer that has used their payment card at our…
Target, arguing it’s not liable, files for dismissal of data breach suit
Tom Webb reports: Target is asking a federal judge in St. Paul to dismiss a multibillion-dollar complaint filed by groups of banks stemming from last year’s massive data breach. The banks claim Target was negligent in its handling of shoppers’ credit and debit card information, which allowed hackers to steal sensitive information about some 100…
A file in the wrong place led to discovery of CSU-East Bay’s breach
Karina Ioffee provides additional details on the CSU – East Bay breach reported yesterday: The intrusion on August 23, 2013 by an unknown person using malicious software was discovered August 11 during a routine security check by the university’s technology department, said Jeff Bliss, a university spokesman. Bliss said university IT workers found that there…
More details start to emerge about Summit County Fair breach
Thanks to some solid reporting by David Burger, we now have some more details about the Summit County Fair data breach reported previously on this blog: The Federal Bureau of Investigation has joined the Summit County Sheriff’s Office in investigating a security breach that resulted from a third-party vendor selling tickets to two events at…