NullCrew has responded to Bell’s claim that it was a third-party supplier who got hacked by providing DataBreaches.net with more details about the hack and their conversations with Bell alerting them to the breach. In an interview today, NullCrew revealed that they had access to Bell’s server for months, and had disclosed that to them…
Category: Of Note
NullCrew claims to have hacked Bell Canada (Update 1)
Update: Bell Canada did not respond to the email they received from DataBreaches.net, but reportedly did send a statement last night to Canada.com, saying “Bell IT and security teams are investigating the situation and will provide further update tomorrow.” NullCrew is back, and claims to have hacked Bell Canada. In a tweet on January 15, they…
Commission Statement Marking the FTC’s 50th Data Security Settlement – January 31, 2014
Today marks a milestone for the Federal Trade Commission – the announcement of the Commission’s 50th data security settlement. What started in 2002 with a single case applying established FTC Act precedent to the area of data security has grown into a vital enforcement program that has helped to increase protections for consumers and has encouraged companies to make…
Provider of Medical Transcript Services Settles FTC Charges That It Failed to Adequately Protect Consumers’ Personal Information
Press release from the FTC, followed by my comments: A company that provides medical transcription services has agreed to settle Federal Trade Commission charges that its inadequate data security measures unfairly exposed the personal information of thousands of consumers on the open Internet, in some instances including consumers’ medical histories and examination notes. In its complaint…
Senators Introduce Bill to Protect Against Data Breaches
Press release issued by Sen. Dianne Feinstein yesterday: Four senior senators today introduced legislation that would, for the first time, provide a federal standard for companies to safeguard consumers’ personal information throughout their systems and to quickly notify consumers if those systems are breached. The Data Security and Breach Notification Act was introduced by Senators Dianne Feinstein…
Hotel Franchise Firm White Lodging Investigates Breach
And another shoe drops. Brian Krebs reports: White Lodging, a company that maintains hotel franchises under nationwide brands including Hilton, Marriott, Sheraton and Westin appears to have suffered a data breach that exposed credit and debit card information on thousands of guests throughout much of 2013, KrebsOnSecurity has learned. Earlier this month, multiple sources in the banking industry began sharing data…