Bill Smith reports: Parking service provider SP Plus says its equipment at Evanston’s three downtown municipal parking garages was hacked to steal credit card data from drivers. In a statement issued today, SP Plus says that the three Evanston garages, along with 10 more in Chicago and four in other cities, were affected by the security…
Category: Business Sector
Sony Pictures hackers release list of allegedly stolen corporate files
And once again, Sony seems to be behind the eight ball when it comes to responding to a hack or claimed hack. Sean Gallagher reports: On Monday, employees at Sony Pictures Entertainment—the television and movie subsidiary of Sony Corp.—discovered that their internal corporate network had been hijacked. A message from an individual or group claiming…
Shutterfly sites announce data breach
From tinyprints: Recently, we detected a criminal cyber-attack on our Tiny Prints, Treat, and Wedding Paper Divas websites, which may have exposed the email addresses and encrypted passwords used by our customers to login to their accounts. We encrypt customer credit and debit card information, and we have no evidence that such information was compromised….
Simms Fishing Products notifies customers of payment card compromise
Simms Fishing Products in Bozeman, Montana is notifying customers after their hosting service discovered that malware had been inserted that seemingly captured customers’ name, address, and credit card information, including the credit card number, expiration date, and CVV2 code. Cards use for purchases made between September 1 and November 6, 2014 may have been compromised. Simms notes that their unnamed website…
How sweet it isn’t: Godiva notifies employees that stolen laptop held their data
Godiva Choclatier is notifying an undisclosed number of employees that their personal information was on a laptop stolen from a human resources employee’s car: On October 16, 2014, we learned that a suitcase was stolen from a rental car that a human resources employee was using to visit Godiva’s retail stores that day. The suitcase contained the employee’s…
Data Security Auditor May be Drawn Into Data Breach Class Action for Failing to Identify Vulnerabilities
DrinkerBiddle reports a development in Storm v. Paytime, Inc., No. 14-cv-01138-JEJ (M.D. Pa.): In August, Paytime, Inc., a payroll services company, moved to dismiss a putative class action filed in the wake of a data breach in which the personal and financial information of more than 230,000 people was compromised. Paytime argued that the plaintiffs lack standing, have failed to plead…