Sally Beauty has issued the following statement. Their name may seem familiar to you because this site reported on an earlier breach last year. Sally Beauty Holdings, Inc. is currently investigating reports of unusual activity involving payment cards used at some of our U.S. Sally Beauty stores. Since learning of these reports, we have been working with…
Category: Business Sector
Ca: More data dumped from Detour Gold
I had told Detour Gold to keep an eye out for future data dumps when I spoke with them weeks ago to notify them that they had been hacked, and I wasn’t surprised to receive an email last night from someone pointing me to a new data dump. The data dump includes personal information on employees as well…
A bit of hard luck hits Hard Rock Hotel & Casino customers
A statement from the Hard Rock Hotel & Casino, linked from their home page: The trust and loyalty of our customers is our highest priority, which is why, as a precautionary measure, we are writing to let you know of a security incident that may have affected your credit card information. This incident may have…
Harbortouch is Latest POS Vendor Breach
Brian Krebs reports: Last week, Allentown, Pa. based point-of-sale (POS) maker Harbortouch disclosed that a breach involving “a small number” of its restaurant and bar customers were impacted by malicious software that allowed thieves to siphon customer card data from affected merchants. KrebsOnSecurity has recently heard from a major U.S. card issuer that says the company is…
FL: Bright House Cable work orders found trashed
Erik Sandoval reports that WKMG received a viewer tip about Bright House Cable customer information found behind Jaguar, Inc. Jaguar is a contractor for Bright House Cable in Altamonte Springs. The work orders exposed the names, addresses and other personal information of dozens of customers. Bright House provided a statement to WKMG: “Bright House…
CareerBuilder listings used as Phishing platform
Steve Ragan reports: Researchers at Proofpoint recently discovered a Phishing campaign that originated form select job postings on CareerBuilder. Taking advantage of the notification system the job portal uses, the attacker uploaded malicious attachments instead of résumés, which in turn forced CareerBuilder to act as a delivery vehicle for Phishing emails. The scam is both…