Fresh doubts have been raised over the online security of high street retailer Argos, following a PC Pro investigation. Yesterday, we revealed that Argos was sending customers’ unencrypted credit-card numbers and security codes in order confirmation emails, potentially exposing them to online fraud. Now it’s emerged that those very same confirmation emails contain a web…
Category: Exposure
Patient data stolen from WFUBMC employee’s car
A bag containing a document with the names and Social Security numbers of 554 patients of Wake Forest University Baptist Medical Center was stolen from an employee’s locked car, medical center officials said today. The theft happened Feb. 15 in the parking deck of an off-campus outpatient clinic, officials said. The list did not include…
Illinois Department of Insurance won’t fine MetLife… for now
Would the state of Illinois have treated a bank or health care provider the same way if the same data had been exposed by them? The Illinois Department of Insurance says it won’t fine insurance agency MetLife, at least for now, after a 13 News investigation revealed MetLife files were thrown into a dumpster without being…
(update) Salmat caused St George data breach
Renai LeMay reports: Business process outsourcing firm Salmat has acknowledged responsibility for a data breach at St George that saw some customers of the Westpac subsidiary receive account details that belonged to other customers. “Our statement production company Salmat has acknowledged responsibility for the error which occured and is currently completing a full investigation,” said…
Argos exposes customers’ credit-card numbers in emails
Barry Collins reports: High street retailer Argos has compromised its customers’ security by sending their credit-card details – including the vital security code – in unencrypted emails. The company has been including the customer’s full name, address, credit-card number and three-digit CCV security code in order confirmation emails, which are sent once a customer has…
CIBC to compensate customers for disclosing data
Joe Schneider reports: Canadian Imperial Bank of Commerce, the country’s fifth-biggest bank, agreed to compensate customers whose personal information was sent by mistake to businesses in the U.S. and Quebec. The agreement, approved by a judge in Toronto, settles a class-action, or group, lawsuit filed by the customers over the disclosure of their names, social…