Lawrence Abrams reports: United States based kitchen utensil manufacturer OXO International disclosed a data breach that spans numerous periods over two years. This breach notification states that customer and payment information may have been exposed and further research by BleepingComputer indicates this was most likely a MageCart attack. In a data breach notification filed with…
Category: Malware
DiscountMugs.com says four months of customer credit cards stolen by hackers
Zack Whittaker reports: DiscountMugs.com, a large online custom mug and apparel store, had a four-month-long data breach just before the busy Christmas holiday season. The company said in a letter to state attorneys general that hackers siphoned off credit card numbers from customers who made orders through its site between August 5 and November 16, 2018…
Bobby Yee, D.P.M notified 24,000 patients after ransomware attack
A somewhat confusing press release of December 20: The Podiatric Offices of Bobby Yee announced today that it was subject to a data incident, which may have potentially exposed some information of clients and individuals. What Happened? On Monday, October 29th, 2018, the Podiatric Offices of Bobby Yee was the victim of a ransomware attack which resulted in the unauthorized…
Titan notifies customers of payment card compromise
Memphis-based Titan Manufacturing and Distributing has been notifying consumers that its computer system had been compromised by malware during the period of November 23, 2017 to October 25, 2018. Anyone placing an order on their site during that time might have had their shopping cart data — personal information plus card data including CVV —…
Double whammy: BCBS of Michigan policyholders hit by two breaches in December
December appears to have been a rough month for Blue Cross Blue Shield of Michigan. Yesterday, I discovered that they had a second breach that was disclosed last month, although it seems to have flown under most media radar. The first breach, fairly widely reported already, involved a laptop stolen from a subsidiary’s employee that…
Dental Center of Northwest Ohio’s notifies patients after IT vendor Arakÿta experiences ransomware incident
TOLEDO, Ohio, Dec. 28, 2018 /PRNewswire/ — Dental Center of Northwest Ohio (the “Dental Center”) is providing notice to current and former patients and employees of a recent incident involving personal information. To date, the Dental Center has not received any reports that personal information has been misused as a result of this incident. On or about September 1, 2018, the…