I try to remember to check data dumps on Pastebin to see what’s showing up. Today I see a data dump of customer data reportedly acquired from online shoe retailer Zapateria Orinoco. There are 487 customers’ e-mail addresses, clear-text passwords, security questions and security answers. Ugh. But wait, there’s more. Two administrator accounts with clear-text passwords….
Category: Business Sector
Hack on online game, Mu Explicito, exposes players’ and administrator’s passwords
Another Pastebin dump, this one of a hack of Mu Explicito, reveals 35 usernames, clear-text passwords, and e-mail addresses as well as the site owner/administrator’s clear-text password.
Steam database hacked; extent of breach still unclear
Steam Forums has issued a statement concerning a November 6 intrusion. Their notice reads: Dear Steam Users and Steam Forum Users: Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums. We learned that intruders obtained access to a Steam…
UK: Gambling worker guilty of selling 65,000 bingo players’ details
A former gambling industry worker who unlawfully obtained and sold personal data relating to over 65,000 online bingo players has been found guilty of committing three offences under section 55 of the Data Protection Act. Marc Ben-Ezra, of Finchley, was given a three year conditional discharge and ordered to pay £1,700 to Cashcade Limited as…
OH: Rash Of ID Thefts Linked To Delaware County Store
Donna Willis reports: As many as 444 credit-card numbers are stolen during transactions at a Delaware store, detectives say. A Delaware police investigation into a rash of identity thefts revealed that one source of the thefts is transactions at the Habitat for Humanity of Delaware County ReStore. Detectives, working with information developed within the past…
(update) Computershare Says No Customer Data Exposed In Breach
Paul Roberts reports: The investor services company told Threatpost that an investigation has determined that data stolen by a rogue employee didn’t contain shareholder data. However, the company still hasn’t retrieved two USB drives containing company email and documents that outline some of Computershare’s closely held business plans. The statement came in response to a Threatpost…