John Leyden writes: Luxury cosmetics firm Lush has ditched its UK website in response to a sustained hacking attack which left users vulnerable to credit card fraud. The firm warns that credit card details submitted to the Lush.co.uk site between 4 October and 20 January may have been compromised by the assault by unknown hackers….
Category: Business Sector
Beverly Hills spa owner pleads guilty to credit card scam targeting celebrities
In a follow-up to a breach that was previously mentioned on this blog, David K. Li reports: A crooked Beverly Hills stylist will cop a plea bargain tomorrow n a hair-raising, million-dollar, credit-card scam that could land her for a long appointment behind bars. Maria Gabriela Hashemipour, 51, has already signed papers to plead guilty…
Ingenix discovers it may have been exposing health service providers’ SSNs for up to 5 years
This is one of those breaches where I really don’t blame the company, which in this case is Minnesota-based Ingenix. Ingenix provides web-based lookups so that patients can find providers in their area covered by their health plan. The provider data Ingenix uses is provided by the health plans or preferred provider plans themselves. Ingenix…
AT&T iPad hackers’ chats were turned in by secret source
Robert McMillan reports: Rhe government’s case against two men charged with hacking into AT&T’s website to steal e-mail addresses from about 120,000 iPad users got a boost last year when a confidential source handed over 150 pages of chat logs between the two and other members of their hacking group. Excerpts from the logs, published…
SC: Restaurant Customers’ Credit Card Info Stolen
A popular Rock Hill restaurant is the one common thread in a growing number of credit card fraud cases. … So far, more than 30 patrons have reported unexplained charges on their credit cards from states around the Southeast. The victims all ate at Michael’s Rock Hill Grille from Sept. 16 through Nov. 2, with…
Two charged over iPad hacking on AT&T network
From Reuters: U.S. prosecutors have charged two men with stealing and distributing email addresses for about 120,000 users of Apple Inc’s popular iPad. Investigators accused Daniel Spitler and Andrew Auernheimer of using an “account slurper” to conduct a “brute force” attack over five days last June, to extract data about iPad users who accessed the…