Seen on Travel Mole: Holiday Extras is investigating how the email addresses of nearly 5,000 of its customers were wrongly shared online. It is contacting 4,852 customers to tell them about the security breach, which it blamed on a mistake by one of its marketing partners. In a note to its customers, Holiday Extras assured…
Category: Subcontractor
Court Rules SilverPop Not Liable for Damages After Data Breach
Back in 2010 and 2011, I posted a number of blog entries about a breach at SilverPop. SilverPop was not particularly transparent/forthcoming about the scope of the breach, but it seemed to be pretty large. Today, Ryan M. Martin of Winston & Strawn LLP writes: A Georgia court recently agreed on a summary judgment motion…
KR: Customer data stolen from NongHyup Life by subcontractor employees
Is there anyone left in South Korea who hasn’t had their information leaked by now? Sheesh. Yonhap News reports: Subcontracted employees were found to have taken some 350,000 pieces of private data belonging to customers from a local life insurance firm that hid the leak for months from authorities, the financial watchdog said Wednesday, just…
Whitehat hacker goes too far, gets raided by FBI, tells all
Sean Gallagher reports on an interesting revelation concerning the second data breach at the University of Maryland: A whitehat hacker from the Baltimore suburbs went too far in his effort to drive home a point about a security vulnerability he reported to a client. Now he’s unemployed and telling all on reddit. David Helkowski was working…
FL: Call center employee and 7 others charged in ID theft fraud scheme involving AT&T customer info
A 22-count indictment charging eight defendants with participating in a conspiracy to unjustly enrich themselves by stealing personal identifying information of AT&T customers and using the information to make unauthorized wire transfers from the victims’ bank accounts and obtain unauthorized credit or debit cards has been unsealed in the Southern District of Florida. The indictment…
Your employee info is in the mail….. somewhere….
So TrustHCS hires Human Resource Advantage (“HR Advantage”) to provide employment resources support. HR Advantage stupidly (yes, I said stupidly) sends unencrypted employee information on a thumb drive via U.S. mail to TrustHCS. The information included names, Social Security numbers, dates of birth, bank account information, postal and email addresses, and any leave of absence…