If you eat at Zaxby’s, you should check to see if your location is affected/ by a security breach. Yesterday, the chain announced that some of their stores (108, so far, by their list) had suspicious files found on their systems that may have exfiltrated customer credit and debit card info. Although the press release does…
Category: Of Note
Stolen Florida Dept. of Juvenile Justice device contained records of more than 100,000 youth and employees
The Florida Department of Juvenile Justice says it “strives to increase public safety by reducing juvenile delinquency, strengthening families and turning around the lives of troubled youth.” Creating more trouble for youth and their families is obviously not part of their mission, yet that’s what may have happened. From a press release they issued yesterday:…
Move over SCDOR. Make room for Human Resources and Skills Development Canada.
Human Resources and Skills Development Canada seems to be vying for a spot on the wall of shame. Last month, they disclosed that an employee had lost an unencrypted USB drive with 5,000 Canadians’ social insurance numbers, medical records, and other information. Even normally mild-mannered and polite Canadians got upset over that one. Now today, when…
Global Payments revises total breach cost estimates upwards, but wait until you see what *didn’t* cost them
In September, I posted Global Payments’ statement from their quarterly filing that dealt with the costs of a breach disclosed in March 2012. BankInfoSecurity.com has just reported on their most recent filing. Whereas last year, Global Payments estimated the cost of the breach at about $84 million, their current 10-Q filing puts the cost of the…
Hit with extortion demand after job applicants’ data hacked, Drake International refuses to pay
Christine Dobby reports: Drake International, the Canadian-based job placement firm, confirmed Wednesday that it has been the victim of a hacking scheme by a group seeking to extort payment in exchange for not releasing the personal information of people who have used Drake’s services. […] The hackers that contacted Drake on Monday, made their threats…
No one’s to blame? I beg to disagree.
Another data theft in the education sector. And yet again, no one did anything wrong because there was never any policy. Yesterday I added a breach to DataLossDB involving the Morgan Road Middle School in Georgia. A flash drive with unencrypted student information, including SSNs, was stolen from an teacher’s unattended car. A gradebook was…