It’s not enough I come across a payment card breach notification with a lot of detail, so I was surprised to read a notification of an e-commerce breach from Bailey’s to the Oregon Attorney General’s Office that provided so much information. Look at the first few paragraphs of the timber harvest gear firm’s notification. It includes the date…
Category: Business Sector
Central Concrete Supply notifies employees of breach involving W-2’s
Another business discloses a breach that sounds like it might have been another business email compromise (impersonation) scam: We are writing to tell you about a data security incident that may have exposed some of your personal information as an employee of Central Concrete Supply Co., Inc., Right Away Redy Mix, Inc., or Rock Transport, Inc….
PH: Police arrest 27 sextortionists
Francis Wakefield reports: The Philippine National Police-Anti-Cybercrime Group arrested 27 persons allegedly involved in sextortion activities in an operation in Cabanatuan City Tuesday. Senior Supt Guilermo Lorenzo Eleazar, PNP-ACG director, said that the suspects were arrested inside the office of TLS Synergy Group, an online marketing firm in Cabanatuan City. Read more on Tempo.
SG: No other user data compromised after app glitch, Singtel clarifies
Clifford Lee reports A technical glitch led to the personal details, including the residential address, of a single Singtel customer to be revealed to other customers when they logged-in to their My Singtel mobile application on Monday night (Feb 29), sparking fears that more data had been compromised. Read more on Today.
Hacker Claims to Have Sold 27M Mate1.com Passwords
Joseph Cox reports: A hacker on the dark web forum Hell claims to have sold the email addresses and plaintext passwords of over 27 million users of dating site Mate1.com. “Their server was compromised and the MySQL database was dumped,” the hacker, who asked to remain anonymous, told Motherboard. “I had shell/command access to their server.” Read…
Snapchat “just impossibly sorry” after employee payroll data compromised in BEC scam
John Russell reports that a number of Snapchat’s current and former employees had their payroll information stolen after an employee fell for what has become a common attack known as BEC (Business Email Compromise). In BEC, a scammer poses as a corporate executive and sends an email requesting payroll or customer data. “Last Friday, Snapchat’s payroll department was targeted by an…