Popular cosmetics chain Lush has been attacked by hackers, with consumer credit card information and personal details having been used for fraudulent purchases. It appears as though the hackers may have been stealing sensitive data for up to four months, and Lush has advised consumers to contact their banks if they thought their details had…
Category: Hack
UK: Lush website hack ‘exposes credit card details’
John Leyden writes: Luxury cosmetics firm Lush has ditched its UK website in response to a sustained hacking attack which left users vulnerable to credit card fraud. The firm warns that credit card details submitted to the Lush.co.uk site between 4 October and 20 January may have been compromised by the assault by unknown hackers….
NSW Privacy Commissioner investigates University of Sydney data breach
Ben Grubb reports: NSW acting privacy commissioner John McAteer today said that his office was “examining” a data breach through which the detailed records of thousands of University of Sydney students past and present were leaked. The records were being stored online where they could be downloaded easily and read via an internet connection. It…
AT&T iPad hackers’ chats were turned in by secret source
Robert McMillan reports: Rhe government’s case against two men charged with hacking into AT&T’s website to steal e-mail addresses from about 120,000 iPad users got a boost last year when a confidential source handed over 150 pages of chat logs between the two and other members of their hacking group. Excerpts from the logs, published…
SC: Restaurant Customers’ Credit Card Info Stolen
A popular Rock Hill restaurant is the one common thread in a growing number of credit card fraud cases. … So far, more than 30 patrons have reported unexplained charges on their credit cards from states around the Southeast. The victims all ate at Michael’s Rock Hill Grille from Sept. 16 through Nov. 2, with…
Two charged over iPad hacking on AT&T network
From Reuters: U.S. prosecutors have charged two men with stealing and distributing email addresses for about 120,000 users of Apple Inc’s popular iPad. Investigators accused Daniel Spitler and Andrew Auernheimer of using an “account slurper” to conduct a “brute force” attack over five days last June, to extract data about iPad users who accessed the…