TJX announced that it has settled with 41 Attorneys General over its massive data breach that they disclosed two years ago. In its statement, TJX denied that it broke any laws, saying, “TJX firmly believes that it did not violate any consumer protection or data security laws.” Under the terms of the settlement, as described…
Category: Hack
Pointer: TJX Hacker Was Awash in Cash; His Penniless Coder Faces Prison
Kim Zetter has a nice human-interest piece over on Threat Level about those involved in the TJX hack: Accused TJX hacker kingpin Albert Gonzalez called his credit card theft ring “Operation Get Rich or Die Tryin.” He spent $75,000 on a birthday party for himself and once complained that he had to manually count $340,000…
Ca: Credit card fraud draws two-year sentence
Betty Ann Adams of TheStarPhoenix.com reports that Brandon Brian Therens, a newly graduated University of Saskatchewan student, pleaded guilty to hacking into the university’s computer in 2007 and downloading the credit card information of about 3,600 students. Therens also admitted to other frauds and thefts between May and October 2007: He stole hand-held wireless debit…
Breach exposes debit card accounts at Suncoast Federal Credit Union to fraud
This story was first reported earlier this week, but I waited until there was confirmation that it was linked to the Heartland Payment Systems breach. This newest story provides more detail but still leaves some questions unanswered. Nicole Norfleet of the St. Petersburg Times reports: About 56,000 members of Suncoast Schools Federal Credit Union have…
JFY Networks reports security breach
A Boston-based non-profit organization that provides job training, JFYNetWorks, has notified (pdf) the New Hampshire Attorney General’s Office last week of a recent incident: We recently learned of the possible unauthorized access as part of what appears to have been part of a larger attack on our organization, which occurred on June 3, 2009. The…
Security experts uncover one-stop botnet marketplace
Researchers have uncovered a fully-functional marketplace for the building and selling of botnets. Security firm Finjan said that the site allows criminals to obtain everything from malware and data, to networks of infected PCs. Yuval Ben-Itzhak, chief technology officer at Finjan, described the new site an “eBay for stolen data”. “It is basically a hacker-to-hacker…