Today’s second example of an entity not knowing their data has been repeatedly dumped is Southern Powerlifting Federation. On April 7, “Jabb” (@Versifyings) dumped some of their smf_members database on Pastebin. The dump consisted of approximately 440 email addresses and hashed passwords. The database records indicate that there were over 15,000 records. Whether Jabbs acquired them all…
Category: Business Sector
FL: Fraudsters used info skimmed from restaurant customers
The South Beach restaurant whose customers had their data skimmed was not named in this press release. There’s also no explanation of where the defendants obtained Social Security numbers and other personal information: United States v. Christopher M. Mack, Case No. 15-2317-MJ-O’Sullivan On March 16, 2015, Christopher M. Mack, 30, of Miami, was charged by criminal complaint…
French media groups hold emergency meeting in wake of ISIS hacking attack
Angelique Chrisafis and Samuel Gibbs report: The French culture minister has called an urgent meeting of media groups to assess their vulnerability to hacking after the television network TV5Monde was taken over by individuals claiming to belong to Islamic State, blacking out broadcasts and hacking its websites and Facebook page. Visiting the network’s headquarters in Paris…
PF Chang’s continues its success in thwarting data breach class action lawsuits
Linn Freedman writes: We have been closely watching the class action suits against PF Chang’s (and other retailers) relating to the bistro’s data breach last year. In December, a federal district court in Illinois dismissed a proposed class action against PF Chang’s because the plaintiffs were unable to show that they had suffered actual harm…
White Lodging confirms another long-running payment card “suspected breach”
White Lodging, an independent hotel management company, continues to struggle to really secure customer card data. Since January 2014, when Brian Krebs reported that White Lodging card data had been compromised for most of 2013, White Lodging has attempted to harden its security. In February 2014, the firm confirmed the suspected breach of point of sales…
AT&T To Pay $25M To Settle Investigation Into Three Data Breaches
If anyone doubted the FCC was serious about getting more into data breach/security enforcement, they should read this settlement with AT&T released today (pdf). From the order: 1. The Enforcement Bureau (Bureau) of the Federal Communications Commission (Commission) has entered into a Consent Decree to resolve its investigation into whether AT&T Services, Inc. (AT&T or Company)…