Posted yesterday on Evernote: (Users impacted by this announcement will have received an email) The vendor that operates https://discussion.evernote.com has notified us that they had been hacked. The hacker was able to retrieve our forum members’ profile information. We don’t believe that the hacker accessed any private forum messages. Our forum is a completely separate service from…
Category: Subcontractor
PA: Another Paytime client affected by hack notifies employees
Eric Veronikis reports that about 200 employees of Carlisle Borough are being notified of the breach at payroll processor Paytime, Inc.: Carlisle learned this week that its payroll information was compromised as the company it formerly used to process pay slips recently discovered a data breach that put the personal information of its customers’ employees at…
Lowe’s notifying employees whose personal information was exposed on Internet by vendor error (updated)
Lowe’s is notifying some current and former vehicle drivers as well as employees who access and administer a driver file system that their personal information was exposed on the Internet for nine months. In their notification letter dated today, Scott Purvis, Vice President of Human Resources for Lowe’s writes: Lowe’s contracts with a third-party vendor to provide a…
Lake Erie College of Osteopathic Medicine students notified of breach by benefits administrator Hubbard-Bert
Hubbard-Bert is the benfits administrator for students at Lake Erie College of Osteopathic Medicine. On April 24, they learned that spreadsheets containing personal information of some LECOM students was inadvertently exposed on the Internet due to a misconfiguration of a test server on April 14 (yes, a test server should not have live data for exactly…
Wayne County employees information part of Paytime breach
Terrie Morgan-Besecker reports that employees of Wayne County, Pennsylvania have been notified of the Paytime, Inc. breach noted previously on this blog: Hackers breached Wayne County’s payroll processor, potentially gaining access to hundreds of government employees’ Social Security numbers, home addresses and bank account information. Chief Clerk Vicky Botjer confirmed the county was notified Tuesday…
After data breach, Bitly enables 2-factor authentication
Joel Locsin reports: Following a data breach discovered last week, URL shortening service Bitly has enabled two-factor authentication to protect its account holders. In a blog post, Bitly chief technology officer Rob Platzer also said they traced the compromise to an unauthorized access to the account of one of the company’s employees. “We immediately enabled two-factor authentication…