AP reports: More than 40 state attorneys general have announced a $1.5 million settlement with The Neiman Marcus Group LLC over a data breach the Dallas-based retailer disclosed in January 2014. The breach exposed customer credit card data at 77 Neiman Marcus stores nationwide. Over a three-month period in 2013, about 370,000 Neiman Marcus credit…
Category: U.S.
MI: Kent County Community Mental Health Authority notifies 2,284 patients after phishing attack
Kent County Community Mental Health Authority of Michigan, dba as Network180, issued a notice on their site about a HIPAA breach that they reported to HHS as affecting 2,284 patients. Here is the text of their notice: We are posting this notice as part of our serious commitment to privacy. We regret to inform the…
OXO Discloses MageCart Attack That Targeted Customer Data on Oxo.com
Lawrence Abrams reports: United States based kitchen utensil manufacturer OXO International disclosed a data breach that spans numerous periods over two years. This breach notification states that customer and payment information may have been exposed and further research by BleepingComputer indicates this was most likely a MageCart attack. In a data breach notification filed with…
DiscountMugs.com says four months of customer credit cards stolen by hackers
Zack Whittaker reports: DiscountMugs.com, a large online custom mug and apparel store, had a four-month-long data breach just before the busy Christmas holiday season. The company said in a letter to state attorneys general that hackers siphoned off credit card numbers from customers who made orders through its site between August 5 and November 16, 2018…
Google Emails Users About Private Data Exposed by Google+ API Bug
Lawrence Abrams reports: Google has started sending out notifications to those who were affected by their Google+ API bug that was disclosed in December 2018. This notification provides details regarding what profile data was exposed and the apps that had access to it. On December 10th, 2018, Google disclosed a Google+ API bug that allowed…
Mom shocked to find driver’s license on metro Atlanta school website: Turns out, she’s not the only one
Joe Henke and Lauren Padgett report: A former volunteer with DeKalb County Schools was shocked by what she found when she typed her own name into Google recently – an image of her driver’s license posted online. […] Houde volunteered with DeKalb County Public Schools as a room parent when her children attended school in the district….