Davey Winder reports: CafePress, the custom T-shirt and merchandise company, acquired by Snapfish for more than $25 million (£20 million) in November 2018, has been hacked. According to various reports, the breach that compromised more than 23 million accounts happened on February 20. Is yours one of them? What is known about the CafePress breach?…
Category: Business Sector
Security breach brings down shutters on 7Pay
Michael Carroll reports: Bosses at retailer 7-Eleven Japan called time on its fledgling 7Pay mobile payment service, after deeming attempts to recover from a major security breach were too onerous. The service launched on 1 July offering cashless payments in the retailer’s chain of convenience stores, but within days the set-up was attacked by fraudsters…
One Misconfig (JIRA) to Leak Them All- Including NASA and Hundreds of Fortune 500 Companies!
Avinash Jain writes: Some months back, I published an article on “Exposed JIRA server leaks NASA staff and project data” in which I was able to find NASA staff details, their username, their email ids along with their internal project details which were getting leaked by one of their tools — JIRA which is an…
Ikea says sorry for customer data breach due to email gaffe
Malavika Menon reports: Swedish retailer Ikea yesterday apologised to affected customers in Singapore after the company inserted 410 individual e-mail addresses in the wrong message field of a promotional mailer and sent it out. A spokesman for Ikea Singapore said the incident occurred at 4.57pm last Thursday and that it “regretfully made an error of…
E3 Website Accidentally Doxed Contact Info for 2,000 Journalists
Michael Kan reports: The organizer behind the E3 gaming convention has messed up bad by accidentally leaking the contact information to more than 2,000 journalists who attended the show this year. For some reason, E3’s public website featured a link to a spreadsheet containing the sensitive information, which includes email addresses, addresses and phone numbers…
StockX was hacked, exposing millions of customers’ data
Zack Whittaker reports: It wasn’t “system updates” as it claimed. StockX was mopping up after a data breach, TechCrunch can confirm. The fashion and sneaker trading platform pushed out a password reset email to its users on Thursday citing “system updates,” but left users confused and scrambling for answers. StockX told users that the email…