Tom Pullar-Strecker and Siobhan Downes report: Vodafone says it has informed the Privacy Commissioner about a data breach identified by a customer yesterday. The customer said he had been able to access details of other people’s Vodafone’s accounts, including personal information, their internet usage and credit-card details by using a default password. Vodafone spokeswoman Emma Carter…
Category: Business Sector
Vermont Attorney General Fines Local Business For Failing To Notify Consumers Of Security Breach
Shelburne Country Store in Shelburne, Vermont will pay a $3,000 civil penalty for failing to inform 721 internet buyers of a security breach of their credit card information. In late 2013, the company’s website was hacked and credit card information stolen. Upon being informed of the breach in January 2014, the company quickly fixed the problem, but…
NZ: Vodafone privacy breach ‘serious’
Liam Hyslop reports: Vodafone is experiencing a serious privacy breach – people with a master password are able to access private customer information, including credit card details. The loophole was discovered by a new Vodafone customer, who said he accidentally accessed another Vodafone customer’s account with the password when he was trying to get into…
Hotel Hippo website goes belly-up after massive security failure
Graham Cluley writes that the Hotel Hippo website is no more following an “appalling” leak recently disclosed by a researcher. A statement issued by HotelStayUK confirms its demise: HotelHippo has shut down and will not reopen. Our investigations showed that just 24 customers were affected by the issues with HotelHippo. This was a small very little used site….
Russian hacker captured in 2010 Broadway Grill data breach
A 30-year-old Russian man was arrested over the weekend for a series of crimes involving hacking into point of sales systems at Washington restaurants including a data breach in 2010 that involved stealing credit card information from hundreds of customers of Capitol Hill’s Broadway Grill. The allegations detail at least $1.7 million in losses to banks and…
Watermark Retirement Communities suffers laptop theft
Dave Lewis’s head is exploding. Understandably. Not only did Watermark Retirement Communities, Inc. fail to adequately secure customers’ personal information – including their date of birth and Social Security numbers- but they pulled out the old chestnuts of “the laptop was password protected” and “the thieves just likely wanted the hardware” pseudo-reassurances. Davis writes: From…