Max Salisbury reports: A Midlands-based housing association has been slammed after it somehow managed to publish the private and intimate details of thousands of its tenants online. South Staffordshire Housing Association (SSHA) published residents’ names, telephone numbers, addresses, family affairs and health details on the ‘Contact Us’ page of its website. Though the private data…
Category: Business Sector
Yahoo Says No Data Stolen in Shellshock Hack
Chris Strohm reports: Yahoo! Inc.’s computer servers were breached by hackers exploiting the Shellshock security hole, although no user data was compromised, the company said in a statement. “Last night, we isolated a handful of our impacted servers and at this time we have no evidence of a compromise to user data,” according to the…
Five indicted in Saks Fifth Avenue customer info theft scheme
Following up on a previously noted breach, five people have been indicted in the acquisition and misuse of nearly two dozen Saks Fifth Avenue customers’ information.
Dear FTC
Why is THIS type of breach still happening? How many more customers will be put at risk of ID theft before Experian deals with what has been a too-frequent problem with client login credentials being misused? I reported one of these breaches in January. I reported one in May. I filed a formal complaint asking FTC to investigate…
UIL Holdings notifies customers after laptop stolen from vendor’s employee
UIL Holdings in Connecticut is notifying customers of a breach involving one of their vendors. The contractor is not named in their notification letter of September 30, which begins: We are writing to inform you of an incident that involved your personal information. On or about September 13, 2014, a thief stole a laptop computer…
AT&T notifying customers of insider breach
AT&T is notifying customers after discovering that a rogue employee was accessing customer information improperly. The employee, who has since had their employment terminated, would have been able to access customers’ name, account information, including SSN and driver’s license number, and CPNI (Customer Proprietary Network Information). From the wording of the notification letter, it sounds as…