How embarrassing would it be to have a firm named OpSec Security that advertises it’s “trusted by over 400 companies and 50 government agencies” – and then it falls for a phishing scheme? Tim Stuhldreher reports: In the wake of a data breach, an anti-counterfeiting company with local sales and manufacturing operations is advising its employees to be…
Category: Phishing
Hackers spear phish dozens of Russian banks, posing as FinCert
TASS reports: Hackers attacked dozens of Russian banks by sending letters on behalf of FinCert on Tuesday, March 15, Kaspersky Lab said in a report on Wednesday. FinCert is a structure of the Central Bank, which warns financial institutions of cyber threats. “On March 15, dozens of Russian banks became targets of cyberattacks by means…
“Fappening” Hacker Pleads Guilty to Theft of Celebrities’ Naked Pictures
Matt Strong reports: Ryan Collins, the Pennsylvania man charged with hacking the Apple and Google accounts of several people, including many celebrities, has agreed to plead guilty to violating the Computer Fraud and Abuse Act (CFAA), and one count of unauthorized access to a protected computer to obtain information, according to authorities. Prosecutors have recommended that Collins…
14,000 LAZ Parking employees have W-2 data stolen
Phillip Molnar reports on yet another breach of employee W-2 data via phishing: The tax and revenue information for roughly 14,000 employees of the third-largest parking company in the nation, which operates in San Diego and Los Angeles, may have been stolen by an “unknown individual,” the company says. LAZ Parking said Tuesday that the…
Yet more phishing-based compromises involving W-2 tax statement data (Update-24)
(Note: the following is not a complete list… it’s just a list I started after the first few posts on this topic suggested that there would be a lot more. See the “phishing” category of this site for earlier entries this year.) Reports continue to come in to state attorneys general involving the successful spear phishing…
And the phishes just keep on coming…. for your W-2 data
Another day, another successful phish compromising employee data. Add Endologix to any list you’re compiling. You’ve probably already added Seagate, right? DataXu may also have been a victim of this type of attack; it’s not totally clear from their notification. And did I remember to tell you about Information Innovators? Or that York Hospital might have been…