United Airlines has suspended some customers’ MileagePlus accounts after an unauthorized individual was able to start accessing accounts using login credentials acquired from an unnamed third party breach. The unauthorized access began on December 9, according to a copy of the notification message to those affected. The user profiles for MileagePlus accounts include MileagePlus number,…
Category: Business Sector
Data Breach Plaintiffs Survive Dismissal Against Target
If you haven’t kept up with all the lawsuits against Target over its 2013 data breach, Amelia Gerlicher and Todd M. HinnenTodd M. Hinnen of Perkins Coie provide a useful write-up of where things stand now. You can read it on JDSupra.
The National Accountable Care Congress is hacked; user data dumped
Add the National Accountable Care Congress to this week’s list of hacks. A dump of almost 900 users’ information includes their usernames, first and last names, e-mail addresses, company, city, state, and zip, password, and their join date and expiration date for their account – all in plain text. SLC Security, which first reported the breach, notes that…
Zappos settles charges with nine states over data breach
There’s been a settlement of charges stemming from a breach disclosed in 2012 that affected 24 million consumers. The settlement requires the online shoe store to guard data, pay $106,000 to NC and 8 states Raleigh: Nevada-based online retailer Zappos.com will take steps to better protect consumers’ personal information, Attorney General Roy Cooper announced Wednesday….
Three million Moonpig accounts exposed by flaw
Darren Pauli reports: Custom mugs and tat outfit Moonpig has a signficant flaw that exposes personal records and partial credit card details for some three million customer (sic), almost 18 months after it was reported. The failure, discovered and privately reported by developer Paul Price, meant every account and the names, birth dates, and email and street…
Out of site, but not off the dark web
According to Belsec Blog, Rex Mundi republished “thousands of Belgian data” on Tor. While a few of the hacks the blog refers to have been previously mentioned on DataBreaches.net, some of them are news to me: