Chairman John D. (Jay) Rockefeller IV today released a staff report titled, “A ‘Kill Chain’ Analysis of the 2013 Target Data Breach.” The report details how Target possibly failed to take advantage of several opportunities to prevent the massive data breach in 2013 when cyber criminals stole the financial and personal information of as many…
Category: Business Sector
Sorenson Communications notifying employees after breach at payroll vendor’s
I’ve recently seen a number of reported breaches involving unnamed payroll vendor(s). I wish notification letters would name the breached vendor(s) so we’d know if it’s the same vendor or if a bunch of payroll vendors have recently been successfully attacked. Today’s report is from Sorenson Communications, who notified U.S. Sorenson Communications and CaptionCall@ employees that…
Chicago’s Trustwave sued over Target data breach
Ooh. Trustwave has been sued for their role in the Target breach. The plaintiffs in the potential class action lawsuit are Green Bank and Trustmark Bank John Pletz reports: Although the most serious allegations are leveled at Target, the suit alleges that Trustwave failed to identify deficiencies in the retailer’s IT systems. Trustwave’s software audits companies’ IT systems…
AU: Doubts over computer hacker case
JoAnne McCarthy reports: An alleged computer hacker described last year as a ‘‘considerable risk to society’’ could apply to have all charges against him dismissed after questions about the case against him and the ‘‘guns blazing attitude’’ of police. Matthew Flannery, 24, of Point Clare, was allegedly an international hacking group leader when he was…
Judge Refuses to Dismiss Confession, Evidence in Reuters Employee Hacking Case
Kim Zetter reports: A federal judge has refused to dismiss a recorded confession and computer evidence collected in the case of a former Reuters employee accused of conspiring with members of Anonymous to hack his former employer. Matthew Keys, 26, sought to throw out his confession on the grounds that he was on an antidepressant…
Law firm notifies employees after vendor’s server accessed
So here’s another case where a vendor’s database was accessed by someone who was able to acquire a client’s login credentials: The international law firm of McKenna Long & Aldridge notified the Maryland Attorney General’s Office on February 26 that 441 current and former employees’ W-2 information and other information were involved: As a result…