Reeves International is notifying consumers who made purchases on BreyerHorses.com that their personal information may have been compromised in a breach that went undetected for 18 months. In a letter to those affected, Arthur Minnocci, CFO, writes: On September 9, 2014, we learned that unauthorized individuals installed malicious software on the computer server hosting the Breyer Horses…
Category: Malware
Cyberswim notifying online customers of breach at web host (UPDATED)
Uh oh. Any consumer notification template that reports a breach due to malware injection on the web host’s server and/or includes [INSERT SITE NAME HERE] doesn’t bode well, especially when the compromise lasted for more than three months before being detected. See Cyberswim‘s template notification letter, here (pdf). I don’t see any notification on their web site…
Home Depot now facing 21 class-action lawsuits over data breach
David Allison provides a litigation update here. The next question is how many of them will be dismissed because of lack of standing.
Kmart discovers it was breached in September; discloses breach in SEC filing (UPDATED)
Danny Yadron of the Wall Street Journal just tweeted that Kmart has disclosed a data breach in its SEC filing. Indeed, they have: On October 9, Kmart’s Information Technology team detected Kmart’s payment data systems had been breached and immediately launched a full investigation working with a leading IT security firm. The investigation to date indicates…
Dairy Queen update: almost 400 locations affected by Backoff malware
The Dairy Queen breach, first reported in August, is back in the news this week as more details emerged. In a statement issued yesterday, they write (emphasis added by me): International Dairy Queen, Inc. recently learned of a possible malware intrusion that may have affected some payment cards at certain DQ® locations and one Orange Julius® location…
North Dakota State College of Science reports malware activity found on Wahpeton and Fargo computers
North Dakota State College of Science Information Technology Services department has been alerted to malware activity on a number of NDSCS-owned computers in Wahpeton and Fargo and has taken immediate steps to ramp up security on its systems. Personal information such as names, Social Security numbers and mailing addresses of more than 15,000 current and…