The Pentagon Federal Credit Union malware-related breach, first reported on this blog on Jan. 6, has an update. According to a supplementary letter to the New Hampshire Attorney General’s Office filed by their lawyers on January 11, the breach affected 674 residents of New Hampshire, not 514. Does anyone know the total for this breach?…
Category: Malware
5,600 South Carolina state employees notified of security breach
Associated Press reports that some of the people people who have or had insurance coverage from South Carolina’s State Employee Insurance Program have been sent letters notifying them of a breach. According to AP: State Employee Insurance Program director Stephen Van Camp said a computer virus attack on a single computer could have allowed the…
Malware snags Pentagon Federal CU member’s SSN and data
Through its lawyers, Pentagon Federal Credit Union (PenFed) has notified the New Hampshire Attorney General’s Office of a security breach. According to a letter sent to the state on December 30, on December 12, PenFed discovered that a laptop had been infected with malware. The compromise allowed access to a database containing names, addresses, Social…
Keylogger captured Sovereign Bank customer data
By letter dated December 22, Sovereign Bank’s Chief Privacy Officer notified the New Hampshire Attorney General’s Office of a security breach: On October 15, Sovereign Bank… became of aware of unusual activity based on IP traffic. Upon discovery of the issue, the Bank launched an investigation, and performed due diligence which was completed on December…
(follow-up) Fired Fannie Mae contractor sentenced to 41 mos. for attempting to destroy all data on servers
U.S. District Judge J. Frederick Motz sentenced computer programmer Rajendrasinh Babubhai Makwana, age 36, of Montgomery County, Maryland, today to 41 months in prison, followed by three years of supervised release, for computer intrusion arising from the transmission of malicious script to Fannie Mae’s computer servers. A federal jury convicted Makwana on October 4, 2010….
Fallout from Recent Spear Phishing Attacks?
Brian Krebs writes: McDonald’s and Walgreens this week revealed that data breaches at partner marketing firms had exposed customer information. There has been a great deal of media coverage treating these and other similar cases as isolated incidents, but all signs indicate they are directly tied to a spate of “spear phishing” attacks against e-mail marketing…