Kit Sandeman reports that a 24-year-old man from London who was arrested after targeting an unnamed organization in Derbyshire has been given a “restorative justice” option: The man admitted accessing email accounts by using information found on social media sites such as LinkedIn and Facebook to identify targets, and bypass their security questions. This then…
Category: Business Sector
2016 goes out with a hack as thedarkoverlord dumps more data
At 00:00 UTC, TheDarkOverlord issued a “press release.” Depending on where you reside, it made for a bad end to 2016, which was already a pretty terrible year for breaches, or a rotten start to 2017. Several days ago, DataBreaches.net reported on several hacks TheDarkOverlord (TDO) had announced. As expected, TDO has now dumped more data from…
Sg: Cellar Door, Web host fined over data protection breach after customer data appeared on Pastebin
K.C. Vijayan reports: The Cellar Door, a well-known local seller of gourmet products, has been fined $5,000 for failing to protect the personal data of some of its customers and users from being posted on another website without authorisation. Its website host, Global Interactive Works (GIW), was fined $3,000 by the Personal Data Protection Commission…
KeepKey notifies customers of security incident, offers 30 BTC reward for tips leading to attacker’s arrest
KeepKey, a hardware bitcoin wallet, has disclosed how a brief compromise of the company phone and email enabled the attacker to reset some account passwords. Here’s how KeepKey responded to the attack and the attacker: A Message from the Founder About Email Breach Our guiding principle at KeepKey is building open and transparent products for our most…
Topps’ payment card breach was just its latest data security incident
A number of sites have now reported on Topps‘ recent disclosure that on October 12, it became aware of unauthorized access to payment card information for customers using the topps.com website between July 30 and October 12. A copy of the sports card and memorabilia giant’s notification can be found on several state regulators’ sites but not, it seems…
Pakistan automotive giant PakWheels Hacked, 700k accounts stolen
The operative word is “outdated.” Uzair Amir reports: PakWheels, a famous automotive classified website in Pakistan has revealed that their server was breached by an unknown third party exposing personal data of registered users. In an email sent to users on 26th December, the site explained that hackers were able to conduct this breach by exploiting a known vulnerability…