I wish this was an April Fools’ Day prank, but it’s not. Alexander J. Martin reports that Bradley University’s response to their recent breach may just have made things worse for their employees. Keep in mind as you read the following that the breach involved Social Security numbers: The private institution then attempted to mitigate…
Category: Malware
More details on the French Lick Resort payment card breach
In January, French Lick Resort in Indiana disclosed a malware-related breach affecting payment card data. On January 31, attorneys for Blue Sky Casino, LLC, the parent company, formally notified the Maryland Attorney General’s of the incident. The notification provides additional details on the incident, including the fact that the firm sent out 87,975 notification letters…
IL: Bradley University Reports Data Breach
As seen on their web site: Bradley University has reported a breach of personally identifiable information that may affect current employees and their family members. An internal investigation conducted over the last several days discovered malware (malicious software) on two University computers containing personal identifiable information. The malware may have captured personal information including social…
Direct Marketing Association data breach
Oh, look. The Direct Marketing Association had a data breach. In a notification template they submitted to the Maryland Attorney General’s Office on January 8, 2015, they write that the incident involved their online bookstore (and only that section of their website). Investigation determined that malware had been inserted on the server, which was maintained…
Dangerous ‘Vawtrak Banking Trojan’ Harvesting Passwords Worldwide
Mohit Kumar writes: Security researcher has discovered some new features in the most dangerous Vawtrak, aka Neverquest, malware that allow it to send and receive data through encrypted favicons distributed over the secured Tor network. The researcher, Jakub Kroustek from AVG anti-virus firm, has provided an in-depth analysis (PDF) on the new and complex set of features of the malware…
WebSitePipeline notifying clients of breach
BetterBee has notified the New Hampshire Attorney General’s Office of a breach involving some customers’ payment card information. BetterBee says they were contacted by their ecommerce host, WebSite Pipeline (WSP) that hackers had successfully attacked one of their main computers and gained access to some clients’ passwords. Using those passwords, the hackers then uploaded malware that…