James Walker reports on an incident, which while unfortunate, provides us with an example of prompt incident response and thanking the researcher instead of shooting the messenger: A vulnerability in the website of Inventory Hive, a property inventory service, was leaking members’ personal information, including their name and address, along with internal and external property…
Category: Business Sector
UK: Reading Crown Court: Hungerford man avoids jail for computer hacking
John Garvey reports: A computer hacker from Hungerford has narrowly avoided an immediate prison sentence. The 22-year-old walked from the dock at Reading Crown Court on Monday with a suspended sentence after a judge told him: “We don’t want people like you hacking into our computers and stealing our private information.” Jack Shepherd had previously…
Macy’s Settles Suit Over 2018 Data Breach for Up to $192K
Ella Chochrek reports the update to litigation stemming from a 2018 breach disclosed by Macy’s. Macy’s Inc. is paying up to $192,500 to settle a proposed class action suit after customer information was obtained by a third party in spring 2018. The department store chain received final approval from an Alabama federal judge Friday to…
Hackers breached A1 Telekom, Austria’s largest ISP
Catalin Cimpanu reports: A1 Telekom, the largest internet service provider in Austria, has admitted to a security breach this week, following a whistleblower’s exposé. The company admitted to suffering a malware infection in November 2019. A1 said its security team detected the malware a month later, but that removing the infection was more problematic than…
FTC Reaches Settlement with Kohl’s over Allegations it Failed to Provide Victims with Information Related to Identity Theft
From the FTC, this press release: Kohl’s Department Stores, Inc. has agreed to pay a civil penalty of $220,000 to settle Federal Trade Commission allegations that the Wisconsin-based retailer violated the Fair Credit Reporting Act (FCRA) by refusing to provide complete records of transactions to consumers whose personal information was used by identity thieves. In…
Coinsquare Data Theft Flags Insider Threat Issue
CISO Mag reports: Coinsquare, a Canadian crypto exchange that enables its users to trade Bitcoin, Ethereum, and other cryptocurrencies, confirmed that its customer information was stolen by an ex-employee last year. Cybercriminals laid their hands on this data and are now reportedly going to carry out SIM swapping attacks. According to Stacey Hoisak, Coinsquare’s general…