Mark Hosenball and Warren Strobel report that Edward Snowden successfully socially engineered employees at the NSA into giving him their login credentials: Former U.S. National Security Agency contractor Edward Snowden used login credentials and passwords provided unwittingly by colleagues at a spy base in Hawaii to access some of the classified material he leaked to…
Category: Of Note
A good day for the FTC in federal court?
I didn’t get to Newark for oral argument on Wyndham’s motion to dismiss the FTC’s complaint about their data security, but from early media coverage tonight, it sounds like things went pretty well for the FTC. From the quotes provided in coverage by the Wall Street Journal and Bloomberg Businessweek, it sounds like Judge Salas…
SuperValu warns customers of data breach (update 4 with numbers, Stena Line, other countries also affected, statement from Loyaltybuild)
Conor Pope reports: SuperValu has been forced to contact thousands of customers who have bought its “getaway breaks” after a security breach at the company that oversees the scheme left sensitive financial data potentially compromised. The “getaway breaks” vouchers are a key loyalty reward programme run by the US-owned company Loyaltybuild, which is based in Co…
Hackers Take Limo Service Firm for a Ride
Brian Krebs reports: A hacker break in at a U.S. company that brokers reservations for limousine and Town Car services nationwide has exposed the personal and financial information on more than 850,000 well-heeled customers, including Fortune 500 CEOs, lawmakers, and A-list celebrities. The high-value data cache was found on the same servers where hackers stashed information…
HealthCare.gov has already had a privacy breach – report. Get it together, folks.
It seems like healthcare.gov has had a security breach already in which limited personal information from two applicants was disclosed to another applicant. Kelsey Harris and Rob Bluey report: Justin Hadley logged on to HealthCare.gov to evaluate his insurance options after his health plan was canceled. What he discovered was an apparent security flaw that disclosed eligibility letters addressed…
Exiting CTO who copied source code and company files wins dismissal of CFAA claim; Thoughts on the CFAA post-Nosal
Justin P. Webb writes: Viral Tolat, ex-CTO of Integral Development Company, is accused by his former company of copying gigabytes of source code and confidential files on his way out the door to a position with another company. He copied the source code to multiple places and uploaded some of the data to his personal Google Docs…