A vulnerability in the portfolio information system for broker-dealer subsidiaries of Lincoln National Corporation potentially exposed the records of 1,200,000 people, 18,900 of whom are New Hampshire residents. By letter dated January 4, attorneys for Lincoln Financial Securities Corporation and Lincoln Financial Advisors notified the New Hampshire Attorney General’s Office that although an outside forensic…
Category: Financial Sector
NY: Hackers pluck 8,300 customer logins from bank server (updated)
Dan Goodin reports: Hackers have stolen the login credentials for more than 8,300 customers of small New York bank after breaching its security and accessing a server that hosted its online banking system. The intrusion at Suffolk County National Bank happened over a six-day period that started on November 18, according to a release (PDF)…
UK: Action taken after personal details found in waste bins
The Information Commissioner’s Office (ICO) has found Bellgrange Mortgages and Insurance Services Ltd in breach of the Data Protection Act after clients’ details were found in two large waste bins intended for the use of local residents. The organization, based in Stanmore, has signed an official Undertaking to improve data security. The material included mortgage…
Heartland in $60 mln settlement agreement with Visa
Reuters is reporting: Heartland Payment Systems Inc (HPY.N) said it reached a $60 million settlement agreement with Visa Inc (V.N), under which it will pay issuers of Visa-branded credit and debit cards for data security breach claims. Heartland, the fifth-largest payments processor in the United States, said the settlement was with respect to losses issuers…
KS: Two Indicted For Identity Theft
WIBW reports: A Topeka man and Olathe woman are accused of identity theft. 45-year old Robert L. Maxwell of Topeka and 46-year old Marcella D. Machado of Olathe are each charged with conspiracy, bank fraud, aggravated identity theft, and theft or receipt of stolen mail. The indictment alleges that Maxwell and Machado obtained information relating…
Heartland breach shows why compliance is not enough
Jaikumar Vijayan reports: […] The [Heartland] intrusion led to the “stark realization that passing a PCI security audit does not make a company secure,” said Avivah Litan, an analyst at research firm Gartner Inc. “This was known well before the breach, but Heartland served as a big pail of ice water thrown on the face…