Two breaches seemed small and innocuous at the time, but weren’t. A timely reminder why entities should notify even when they think risk is low. Thomas Fox-Brewster reports: In 2009 and 2010 two separate attacks hit widely-used online gambling payments processors Moneybookers and Neteller. Though they initially appeared innocuous, it now seems both attacks saw millions of…
Category: Non-U.S.
TalkTalk offers customer £30.20 ‘final settlement’ after crims nick £3,500
TalkTalk is really turning out to be the poster child for how not to handle a breach. In today’s installment of “Lollipops are Adequate Mitigation, Right?” Alexander J. Martin reports: TalkTalk is trying and failing to mend its broken customer relationships following the recent mega breach, in one case offering an individual who had £3,500 stolen…
AU: SpinTel breaches privacy of 400 customers
Corinne Reichert reports: The Australian Communications and Media Authority (ACMA) has directed telecommunications provider SpinTel to comply with the IPND Industry Code after breaching the privacy of more than 400 customers. SpinTel, a mobile virtual network operator (MVNO) that resells Optus’ 4G and 3G networks for mobile services, and provides home phone and broadband connectivity…
ZA: Crystal Web suffers ADSL security breach
MyBroadband reports: Crystal Web suffered a security breach recently, after DSL subscribers’ username and password information was exposed via an online customer portal. Crystal Web CEO Shaun Kaplan said the “old DSL username and password list” was intended for admins and developers to test portal connectivity with. “This list did not contain any identifiable information of…
UK: Dozens of criminals have gone to jail to keep passwords secret
Fiona Hamilton reports: Convictions of suspects who refuse to hand over their encrypted passwords have risen sixfold in four years, potentially blocking police from examining their electronic devices. The sharp increase has led to fears that criminals are opting to plead guilty to encryption offences rather than allow detectives to go through their computers and…
AU: Essendon privacy lapse as personal contact information of prominent members is sent via email
Grant Baker reports: The personal contact information of Essendon’s most prominent and powerful supporters has been mistakenly emailed to more than 380 members of the club’s past players and officials association. The privacy lapse occurred when data related to coteries including the Essendon Women’s Network, Essendonians, Collins Street Dons, Red & Blacks, Lawdons and the Dick…