John Leyden reports: Santander customers say they are continuing to be deluged with Trojans and other junk to email addresses exclusively used with the bank months after the problem first surfaced back in November. At least two Reg readers have put in complaints to the Information Commissioner’s Office. But the data privacy watchdog told us that it has “insufficient…
Category: Other
Kent Police fined £100,000 after interview tapes abandoned at former station
The Information Commissioner’s Office has served a monetary penalty of £100,000 on Kent Police after confidential information, including copies of police interview tapes, was left in the basement of a former police station. The highly sensitive information included records relating back to the 1980s, thought to have been left at the site when the building was vacated…
Dartmouth-Hitchcock notifies employees that direct deposit account info compromised by breach
Dartmouth-Hitchcock has notified some employees that their names and direct deposit bank account information were compromised after some employees fell for a phishing attempt. In a letter dated January 20, D-H informed the New Hampshire Attorney General’s Office that the unauthorized access to the Employee Self Service Direct Deposit Payment System occurred between October 6…
Who hacked Nordstrom?
Will Phoenix writes: Unlike the hackers who recently hit Target and Nieman Marcus, authorities know exactly who hacked Nordstrom. According to the U.S. Attorney’s office two brothers identified as Andrew S. Chiu, 29, of Anaheim, California; and Allen J. Chiu, 37, of Dallas, Texas utilized a mix of business logic attacks and fraudulent actions to…
Internet Scammers Change Some Boston University Direct Deposit Accounts
Rich Barlow reports: Apparently using a common internet deception called phishing, scammers obtained log-in information allowing them to change direct deposit routing information for the paychecks of 10 BU employees in December. The employees’ monthly paychecks were then routed elsewhere. […] Shamblin says that users of suspicious internet protocol (IP) addresses gained access to the…
Security breach at Myntra.com exposes customer’s personal information, order history and more
Sandeep Shetty writes: Update (added on 3 Dec 2013): Based on my feedback Myntra.com has now setup [email protected] for reporting security issues. Kudos to them for taking the first step towards a better responsible disclosure process and setting an example for other Indian companies. Last week a bug on Myntra.com let anyone with an account take over…