When I saw the headline, “Class action lawsuit seeks to send message about the importance of safeguarding data,” I thought, “Oh, puhleese, how many times are we going to claim we’re just trying to send a message? Why haven’t they gotten it already?” But then I kept reading a news story by Joel Griffin, and…
Category: Malware
BreyerHorse.com site compromised for 18 months
Reeves International is notifying consumers who made purchases on BreyerHorses.com that their personal information may have been compromised in a breach that went undetected for 18 months. In a letter to those affected, Arthur Minnocci, CFO, writes: On September 9, 2014, we learned that unauthorized individuals installed malicious software on the computer server hosting the Breyer Horses…
Cyberswim notifying online customers of breach at web host (UPDATED)
Uh oh. Any consumer notification template that reports a breach due to malware injection on the web host’s server and/or includes [INSERT SITE NAME HERE] doesn’t bode well, especially when the compromise lasted for more than three months before being detected. See Cyberswim‘s template notification letter, here (pdf). I don’t see any notification on their web site…
Home Depot now facing 21 class-action lawsuits over data breach
David Allison provides a litigation update here. The next question is how many of them will be dismissed because of lack of standing.
Kmart discovers it was breached in September; discloses breach in SEC filing (UPDATED)
Danny Yadron of the Wall Street Journal just tweeted that Kmart has disclosed a data breach in its SEC filing. Indeed, they have: On October 9, Kmart’s Information Technology team detected Kmart’s payment data systems had been breached and immediately launched a full investigation working with a leading IT security firm. The investigation to date indicates…
Dairy Queen update: almost 400 locations affected by Backoff malware
The Dairy Queen breach, first reported in August, is back in the news this week as more details emerged. In a statement issued yesterday, they write (emphasis added by me): International Dairy Queen, Inc. recently learned of a possible malware intrusion that may have affected some payment cards at certain DQ® locations and one Orange Julius® location…