Back in January, I noted that Lush Cosmetics had been hacked and customer data acquired and misused. The company reportedly only became aware of the breach after receiving reports from almost 100 customers who had become victims of card fraud. Today, the UK’s Information Commissioner’s Office revealed that Lush was required to sign an undertaking…
Category: Non-U.S.
Cn: Jail for telecom employees who sold subscriber details
Seen on English.Eastday.com: China Unicom and China Mobile employees were among a group of 23 people jailed yesterday for selling phone users’ details. Prison sentences ranged from a year to two years and six months. Liu Hongbo, who worked for the Beijing Longjiang Junwei Information Consulting Center, collaborated with her lover, Dai Bin, and China…
UK: Hampshire school breached data protection rules
From the Information Commissioner’s Office: Bay House School in Hampshire breached the Data Protection Act after the personal details of nearly 20,000 individuals, including some 7,600 pupils, were put at risk during a hacking attack on its website. The hack – which happened in March and involved one of the school’s pupils – exposed pupils’…
Citi Cards Japan data theft hits 92,408 in Japan
Thieves stole private data for more than 90 000 customers of Citigroup’s Japanese credit-cards subsidiary and resold it to others, the company said on Friday. “Citi Cards Japan, Inc. (CCJ) has come to know that certain personal information of 92, 408 customers has allegedly been obtained and sold to a third party illegally,” the company…
(update) Travelodge blames ‘vindictive individual’ for email database breach
John Leyden has a follow-up on an e-mail hack The Register initially revealed in June and that I covered on this blog. Travelodge UK’s explanation doesn’t fully answer my questions, but here’s part of it: This enquiry has thoroughly examined our own IT infrastructures and databases and those belonging to our suppliers as well. The…
UK: Thousands of tenants’ details, including 800 bank account numbers, found on memory stick left in a London pub
From the Information Commissioner’s Office: Two London housing bodies breached the Data Protection Act after details relating to thousands of their tenants were discovered on an unencrypted memory stick left in a pub, the Information Commissioner’s Office (ICO) said today. The memory stick was handed in to the police and safely retrieved at a later…