Ellen Nakashima reports: Federal prosecutors in Baltimore are expected to seek an indictment as early as this week against a former National Security Agency contractor who is accused of carrying out the biggest theft of classified information in U.S. history. The indictment against Harold T. Martin III is expected to contain charges of violating the Espionage…
Category: Of Note
With at least 23 incidents and 29,000 victims, the W-2 phishing season is in full swing
Over on Salted Hash, Steve Ragan has also been compiling data on victims of business email compromise (BEC) W-2 phishing scams. BEC W-2 phishing scams are the scams where someone poses as an executive of your organization and sends you an email from an address that at first glance might appear to be real. Their email…
Data from 2014 hack of children’s online game Bin Weevils leaked online; hacker claims 20m records
We’ve seen it before – in fact, we seem to be seeing it a lot recently – data from an old hack first being publicly leaked. This time it’s Bin Weevils, a British online children’s game, owned by 55 Pixels. In September 2014, Bin Weevils posted a note on their site that they had discovered a “vulnerability”…
InterContinental reports payment card breach at 12 U.S. hotels
Reuters reports that Intercontinental Hotels has now confirmed a breach that was first reported by Brian Krebs in December: InterContinental Hotels Group Plc said on Friday that a malware in the servers at 12 of its hotels in the United States tracked payment card data if the card was used at the hotels’ restaurants and…
Ca: Victim of arson spree questions ICBC’s handling of privacy breach
There’s a follow-up to a breach that I had described as one of the worst insider breaches at its time – because it put lives at serious risk and some victims were firebombed or shot at. Mi-Jung Lee and Kendra Mangione recently interviewed one of the victims, who continues to have concerns about the handling…
Victims of W-2 phishing scams (2017 list)
— The list of entities reporting that employee W-2 data was acquired by phishing.– Last year, this site compiled 145 W-2 phishing incidents before I somewhat waved a white flag in terms of trying to keep up, but as I started working on this year’s list, I found even more cases from 2016, bringing the 2016…