Hack – Page 972 – DataBreaches.Net

ICO failure to punish Lush for data breach sends wrong message, says SecurEnvoy

Posted on August 10, 2011 by Dissent

Warwick Ashford reports: The failure of the Information Commissioner’s Office to impose a monetary penalty against cosmetics firm Lush – for failing to protect thousands of customer records from hackers – sends out all the wrong messages, according to authentication firm SecurEnvoy. “What we have here is a major e-commerce web portal – run by a…

UK: Hack of Lush Cosmetics results in undertaking

Posted on August 9, 2011 by Dissent

Back in January, I noted that Lush Cosmetics had been hacked and customer data acquired and misused. The company reportedly only became aware of the breach after receiving reports from almost 100 customers who had become victims of card fraud. Today, the UK’s Information Commissioner’s Office revealed that Lush was required to sign an undertaking…

UK: Hampshire school breached data protection rules

Posted on August 8, 2011 by Dissent

From the Information Commissioner’s Office: Bay House School in Hampshire breached the Data Protection Act after the personal details of nearly 20,000 individuals, including some 7,600 pupils, were put at risk during a hacking attack on its website. The hack – which happened in March and involved one of the school’s pupils – exposed pupils’…

AntiSec hackers release ‘largest cache yet’ of law enforcement data

Posted on August 6, 2011 by Dissent

Zack Whittaker reports: Hackers associated with the AntiSec movement — a LulzSec and Anonymous combined effort to breach systems with weak security — have released a 10GB in size cache of data belonging to law enforcement. Known as ‘Shooting Sherrifs Saturday’, this follows ‘F**k FBI Friday’ in June, where LulzSec published hundreds of hacked usernames,…

(update) Travelodge blames ‘vindictive individual’ for email database breach

Posted on August 5, 2011 by Dissent

John Leyden has a follow-up on an e-mail hack The Register initially revealed in June and that I covered on this blog. Travelodge UK’s explanation doesn’t fully answer my questions, but here’s part of it: This enquiry has thoroughly examined our own IT infrastructures and databases and those belonging to our suppliers as well. The…

University of Arizona responds to email hack

Posted on August 4, 2011 by Dissent

DA Morales reports on an email hack that didn’t involve any PII but serves as a reminder that you can have a long passphrase or great password, but that’s not enough: The computer security at the UA seems tough to beat, or so it seemed until last night. If you have ever had to set…