Lawyers for Twin America LLC (d/b/a CitySights NY) have notified the New Hampshire Attorney General’s Office that an SQL injection attack on their client’s web server resulted in the acquisition of 110,000 customers’ credit card data. The security breach was discovered on or about October 25, when the firm’s web programmer noticed that unauthorized script…
Category: Hack
(follow-up) Genesco notification to NH available online
Genesco’s notification letter to the NH Attorney General’s Office is available online. Their press release announcing the breach had been posted previously on this site. The notification to the state does not add a tremendous amount of detail, but does note that the company first became aware of a problem when it was contacted by…
Do Walgreens, McDonald’s, and deviantART breaches have common point of compromise? (updated)
Dan Goodin reports: FBI agents looking into the theft of customer data belonging to McDonald’s are investigating similar breaches that may have hit more than 100 other companies that used email marketing services from Atlanta-based Silverpop Systems . “The breach is with Silverpop, an email service provider that has over 105 customers,” Stephen Emmett, a…
Gawker Media is compromised. The responsible parties reach out to TNW (updated)
Matt Brian reports: As we reported earlier, it appeared that the Gawker Media organization’s social media accounts (namely Twitter) had been compromised. While Twitter specifically appears to have been fixed, there’s more to the story. We have been in touch, personally, with the a member of the party responsible for the attack and it appears that the compromised…
McDonald’s Warns Customers of Data Theft
Mitch Lipka reports: McDonald’s is warning its customers of the theft of a database of customers who signed up for promotions, such as its Monopoly game. The data breach makes them vulnerable to phishing attacks and other scams and identity theft. McDonald’s stressed that its records don’t include financial information or Social Security Numbers. But it would…
Hackers steal Walgreens e-mail list, attack consumers
Bob Sullivan reports: Pharmacy giant Walgreens had to swallow some bitter medicine on Friday when it told customers that a computer criminal had stolen its e-mail marketing list. The criminal used the list to send out realistic-looking spam that asked recipients to enter their personal information into a Web page controlled by hackers. “We are…