Reuters reports that Intercontinental Hotels has now confirmed a breach that was first reported by Brian Krebs in December: InterContinental Hotels Group Plc said on Friday that a malware in the servers at 12 of its hotels in the United States tracked payment card data if the card was used at the hotels’ restaurants and…
Category: U.S.
Two people arrested in U.K. in hacking of D.C. police closed-circuit camera network
Peter Hermann reports: Two people have been arrested in London in the hacking of storage devices that record data from D.C. police surveillance cameras, law enforcement authorities said Thursday. The arrests were made in the south London neighborhood of Streatham and followed a search warrant that was served Jan. 19, the day before the presidential…
TX: Documents with Personal Information Inside Dumpster, Thursday Edition
A dumpster diver in Harlingen, Texas hit pay dirt: “Social Security numbers, birthdays, home addresses, home telephone numbers, you name it,” he said. Channel 5 News tracked the documents back to Harlingen Texas Motors, which closed last year. But wait…. it’s probably not what you’re guessing. Read on: We spoke to the owner of the business. He…
Children’s Medical Center of Dallas pays $3.2m penalty for multiple violations of Security Rule
Children’s Medical Center of Dallas, part of Children’s Health nationwide network, has paid HHS $3.2 million to settle charges stemming from multiple breaches involving ePHI and failure to comply with the Security Rule, despite notice of their shortcomings. Here’s HHS’s press release with a link to their determination: The U.S. Department of Health and Human Services, Office for…
US charges 104 in Florida in latest ID theft-fraud roundup
AP reports: Federal authorities have charged 104 people with numerous identity theft and fraud offenses in the latest South Florida crackdown on a rampant problem involving tens of thousands of stolen personal identities. […] In one of the largest cases, an employee at Miami’s Jackson Health System is accused of stealing identities from 24,000 people…
Info of 200,000 Indycar race fans exposed in misconfigured backup
Chris Vickery writes: The online security of over 200,000 Indycar racing fans was put in jeopardy recently. Earlier this month I discovered a large collection of publicly exposed MySQL database backup files at an IP resolving to ims-mysql.indycar.com. The majority of these backups appear to be merely operational, but what stands out are the Indycar…