I had previously reported that LifeLock was negotiating to settle FTC charges that it had violated a 2010 consent order. Now it’s official. From the FTC: LifeLock will pay $100 million to settle Federal Trade Commission contempt charges that it violated the terms of a 2010 federal court order that requires the company to secure…
Category: Business Sector
Skimmers Found at Some Calif., Colo. Safeways
Brian Krebs reports: Sources at multiple financial institutions say they are tracking a pattern of fraud indicating that thieves have somehow compromised the credit card terminals at checkout lanes within multiple Safeway stores in California and Colorado. Safeway confirmed it is investigating skimming incidents at several stores. Read more on KrebsOnSecurity. In at least two locations…
AU: Over 30,000 Optus customers’ debt data exposed on job freelancer site
Josh Taylor reports: The personal data of 31,150 mostly former Optus customers was posted on short-term job website Freelancer.com in major breach of their privacy, Crikey can reveal. Earlier this week, Crikey reported that an employee of the telecommunications company’s debt collector ARC Mercantile had posted a spreadsheet of data of customers who owed a…
Federal Judge Denies Request to Dismiss Hacking Charges
AP reports that a federal judge has denied a motion by lawyers for Roman Seleznev (previous coverage) seeking dismissal of hacking charges (like that was really gonna happen, right?) Martha Bellisle reports that the court found that nothing in the government’s conduct is seizing Seleznev in the Maldives was so outrageous or egregious as to warrant…
Hospitals Aren’t the Only Ones Bleeding Health Records
Kaveh Waddell reports on an issue near and dear to my heart: not all entities that collect or store health information are HIPAA-covered entities. Earlier this year, as one example, we saw the Systema Software leak that impacted numerous firms with a wealth of workers compensation claims. And last year, we saw many employees’ wellness data breached…
Wish list app from Target springs a major personal data leak
Dan Goodin reports: According to researchers from security firm Avast, the database storing the names, e-mail addresses, home addresses, phone numbers, and wish lists of Target customers is available to anyone who figures out the app’s publicly available programming interface. Read more on Ars Technica.