Oh dear. Not realizing that a USB drive contained any personal information, an employee of Boston-based Wolf & Company mailed the drive back to their bookkeeper on March 11. Unfortunately, the envelope was damaged in mailing and the drive, which contained names and Social Security numbers in a QuikBook file, never arrived. No foul play is…
Category: Subcontractor
Chicago’s Trustwave sued over Target data breach
Ooh. Trustwave has been sued for their role in the Target breach. The plaintiffs in the potential class action lawsuit are Green Bank and Trustmark Bank John Pletz reports: Although the most serious allegations are leveled at Target, the suit alleges that Trustwave failed to identify deficiencies in the retailer’s IT systems. Trustwave’s software audits companies’ IT systems…
Law firm notifies employees after vendor’s server accessed
So here’s another case where a vendor’s database was accessed by someone who was able to acquire a client’s login credentials: The international law firm of McKenna Long & Aldridge notified the Maryland Attorney General’s Office on February 26 that 441 current and former employees’ W-2 information and other information were involved: As a result…
ZA: SANRAL resets passwords but doesn’t confirm any breach
After a hacker revealed a vulnerability in the SANRAL website that exposed customer information in January, SANRAL denied it was hacked. Today, they’ve notified registered e-toll users of a password reset, but claim that they still have no evidence of a hack. According to BusinessTech: ETC, the company running the system, told BusinessTech that its…
Computer theft at Greenleaf Book Group
A janitor is suspected of being responsible for the theft of five desktop computers and laptops from the Austin, Texas office of Greenleaf Book Group (GBG). The theft was discovered on January 18. At least one of the computers held current and past customer and vendor information including names, email addresses, credit card information, and in…
CFNC reports accidental disclosure of personal information by third party
WBTV reports: The College Foundation of North Carolina notified participants of the NC 529 Plan that some personal information was accidentally disclosed by a third-party vendor. The foundation, CFNC, sent an email out to participants on Wednesday morning that a third-party vendor’s staging server inadvertently allowed public access to this limited information. A list of…