Elizabeth Banicki reports: The Lawrence Welk Resort says a tech company disabled its computer security system, making 1,427 customers’ credit cards vulnerable to ID theft. Welk says it paid Micros Systems $100,000 for the botched job, to “ensure compliance with evolving Visa and other industry security standards,” and that Visa, for “no legitimate reason,” ordered…
Category: Business Sector
Customers’ Personal Information Found In Macy’s Dumpster
Jeff Bernthal reports: A surprising find outside the downtown St. Louis Macy’s store. Documents containing personal information including social security numbers. Heather Cole reported on documents blowing in the wind last fall for Missouri Lawyers Weekly. She found open dumpsters outside the downtown Macy’s with papers containing debit card numbers but no names of any…
Email marketers reporting breaches
Last week, this site reported that a vendor used by Breach Security was investigating a possible security breach involving contact names and email addresses used for marketing purposes. Now it appears that at least two email marketing vendors have recently reported breaches where the target may have been the database of names and email addresses….
Orange overshares in bcc blunder
Bill Ray reports: Orange accidentally shared the email addresses of more than 300 customers yesterday during a bid to find out what they think of the company. The email, passed on to us by several readers, suggests the recipient might like to reply with their thoughts about how customers keep in touch with the operator,…
Nl: Notary puts clients passports online
Karin Spaink provides an English summary of a recent breach reported in Dutch media: Veilingnotaris.nl tries to list all online real estate auctions. Apparently their site is badly protected: Google has indexed quite some client information, including passport copies, notary deeds, registry information etcetera. The published information concerned both recent and old auctions. Internet Notaries,…
Shell employee contact data breach affects over 100,000
The following was posted by John Donavan and attributed to Royal Dutch Shell (“Shell”) Chief Ethics & Compliance Officer Richard Wiseman: Colleagues, I am writing to inform you of an incident involving misuse of company data. It has become clear recently that the Global Address List, containing contact information of everyone in Shell and some…