In response to a breach discovered on January 12, Rosenthal Wine Shop (Castle Creek Properties, Inc., dba Rosenthal the Malibu Estates) is notifying customers that malware may have compromised their payment card information: We recently learned that unauthorized individuals or entities installed malicious software on computer systems used to process credit card transactions at the Rosenthal wine…
Category: Malware
Missed Alarms and 40 Million Stolen Credit Card Numbers: How Target Blew It
I finally got around to reading this fascinating report by Michael Riley, Ben Elgin, Dune Lawrence, and Carol Matlack for Bloomberg Businessweek. This goes far beyond other media coverage about how Target “missed” or “ignored” FireEye alerts and really gives more details of how the breach occurred.
Security firm report says Target data hack was low tech
Jennifer Bjorhus reports: The U.S. Secret Service has called the criminals behind Target Corp.’s monster security breach well-organized, “highly technical” and “sophisticated.” But cybersecurity firm McAfee Inc. said in a report out Monday that the heist was anything but exotic, describing the attack as a Breach 101 operation. The thieves used easily modified off-the-shelf malware, common methods…
Notice of Data Security Event – City of Pleasantville, New Jersey
On October 8, 2013 the City of Pleasantville (“Pleasantville”) discovered that a computer used by a Pleasantville employee was infected with malware. Pleasantville commenced an internal investigation into this incident. Pleasantville retained independent, third-party forensics experts to confirm the extent of this malware intrusion and to assist in remediating the issue. Pleasantville retained privacy and…
Thieves Jam Up Smucker’s, Card Processor (update 1)
Brian Krebs reports: Jam and jelly maker Smucker’s last week shuttered its online store, notifying visitors that the site was being retooled because of a security breach that jeopardized customers’ credit card data. Closer examination of the attack suggests that the company was but one of several dozen firms — including at least one credit card processor — hacked…
Detroit reports recent computer security breach affects city workers (updated)
Associated Press reports: Detroit says a recent computer security breach affected files that contained personal identifying information of a large number of city employees. The city says in a statement that Beth Niblock, Detroit’s chief information officer, plans to discuss the breach during a Monday news conference. Read more on ABC. I’ll update this post…