AP reports that two men have been charged by authorities in Belarus with receiving $1.35 million stolen from the bank account of Penneco Oil Co. in 2012 in a phishing scheme involving Bugat malware. I expect we’ll see a DOJ release on this later today or tomorrow, and I’ll update this post when it’s available.
Category: Business Sector
Class-Action Suit Targeting Law Firm Privacy Protections Could Be Unsealed
Gabe Friedman reports: The privacy focused class-action law firm Edelson P.C. announced it has filed a federal class-action under seal that targets a Chicago-based regional law firm for data security holes. On Thursday morning, name partner Jay Edelson tweeted that he had filed a motion to unseal the complaint against the unnamed firm. […] In an interview with Big Law…
Chicago CPA firm notifies clients of stolen laptop containing tax info
Chicago-based South Loop CPA provides certified public accountant and tax preparation services to its clients. On March 5, a password-protected laptop was stolen from the firm’s offices. The theft was discovered the same day, and South Loop CPA reported it promptly to law enforcement and began an investigation. That investigation revealed that W-2 forms and tax…
ADP joins ranks of vendors associated with W-2 data compromise
Aha. I see Brian Krebs got some answers before I did concerning a breach involving ADP. On April 30, I had reported that Allegheny College suspected that employee reports of W-2 data comprise were linked to a breach involving ADP’s iPay. In an email to this site earlier today, Rick Holmgren, the college’s vice-president of Information Services and Assessment said…
Stolen billing vendor’s laptop held patient info from 8 medical facilities
EqualizeRCM Services is a vendor providing billing and collection services to healthcare providers. In compliance with HIPAA, it has Business Associate contracts with its clients, who provide it with the information needed to fulfill its functions. The firm has headquarters in Austin, Texas, and offices in Houston and Washington, D.C. On February 29, EqualizeRCM learned that a…
Was an Alpha Payroll Services employee cruelly fired?
Over on Salted Hash, Steve Ragan commented on the Alpha Payroll Services phishing incident, first reported on Daily Dot. The premise of his article appears to be that the employee who was fired was a victim, too. Steve writes, in part: The employee, victimized by the same person who later victimized Alpha Payroll clients, was fired because…