On January 25, when an ING customer discovered that she could access client information on the ingfunds.com web site, she notified her stockbroker. In investigating the situation, ING discovered that since August 2008, a file containing the names, addresses, Social Security numbers, and account numbers of 106 ING shareholders had been available on the web…
Category: Financial Sector
(follow-up) Max Ray Vision sentenced to 13 years, $27.5 million restitution
Joe Mandak of the Associated Press reports that Max Ray Vision, who had more than 1.8 million stolen bank and credit card numbers on computers at his California apartment when he was arrested in 2007, has been sentenced to 13 years in federal prison and ordered to pay $27.5 million in restitution. Previous coverage of…
Former New York Federal Reserve Bank employee and his brother sentenced to prison for fraudulent loan schemes
Curtis L. Wiltshire, a former employee of the Federal Reserve Bank of New York (“FRBNY”) and his brother, Kenneth Wiltshire, were sentenced today to 40 months and 57 months in prison, respectively, for their roles in schemes to obtain hundreds of thousands of dollars in fraudulent loans. The sentences were imposed today by United States…
Equifax tax forms expose worker Social Security numbers
Elinor Mills reports: An unknown number of current and former employees of credit reporting firm Equifax received W-2 forms in the mail with their Social Security numbers visible through a window on the envelope, CNET has learned. Equifax became aware of the problem on January 19 and informed employees in a letter dated January 27,…
Customer Sues Bank After Phishing Attack
Linda McClasson reports: A Michigan-based metal supply company is suing Comerica Bank, claiming that the bank exposed its customers to phishing attacks. A lawsuit filed by Experi-Metal Inc. (EMI) in Sterling Heights, MI alleges that Dallas-based Comerica opened its customers to phishing attacks by sending emails asking customers to click on a link to update…
Ceridian breach disclosure provides clear timeline
Ceridian’s notification to the New Hampshire Attorney General’s Office is now available online (pdf). By letter from its attorney dated February 1, it summarizes the time line beginning with it first becoming aware on December 23 of a possible breach when its personnel spotted unusual activity that might indicate a problem. Further investigation indicated unauthorized…