From their press release of today: MINNEAPOLIS — January 10, 2014 Target today announced updates on its continuing investigation into the recent data breach and its expected fourth quarter financial performance. As part of Target’s ongoing forensic investigation, it has been determined that certain guest information — separate from the payment card data previously disclosed —…
Category: Business Sector
And yet another Experian breach…
This time, the client whose credentials were compromised to gain access to Experian’s credit report database was Lafarge West in Albuquerque, New Mexico. The breach occurred between December 19 and 20, and was reported to those affected on January 7.
David Nosal sentenced; case narrowed the definition of “exceeding authorized access” under CFAA (update1)
I’ve been following the David Nosal case on this blog since April 2011, when the Ninth Circuit held that an employee who violates his employer’s computer use policy is guilty of “exceeding authorized access” to the employer’s computer under the federal anti-hacking statute, CFAA. In June 2011, Nosal filed a petition for rehearing en banc (see…
The Coupons App – Android Coupons App leaks your personal information to everyone – Appthority
In this bad app report we’ll be looking at one of the most popular coupon apps for Android, and how it shares private data it collects from mobile devices. This app also illustrates how privacy issues can extend beyond just the servers used by the app from using HTML5, by mishandling private data, they have…
Hackers use Amazon cloud to scrape mass number of LinkedIn member profiles
Dan Goodin reports: LinkedIn is suing a gang of hackers who used Amazon’s cloud computing service to circumvent security measures and copy data from hundreds of thousands of member profiles each day. Read more on Ars Technica.
The Straight Dope forum hacked – reset your passwords
The following notice was posted on The Straight Dope on January 7: Important Message about your Straight Dope Account and Password Our security team recently discovered that the Straight Dope message board forum was targeted and hacked. This resulted in the illegal acquisition of message board users’ information, namely usernames, email addresses, and Straight Dope…