Jennifer Gannon reports Some customers of TD Bank had their information sent to other customers because of what the bank called a vendor error. TD Bank said a national firm responsible for printing and mailing statements accidentally sent some customers statements that had other customers’ information on the back. Stephania Pearce was balancing her checkbook…
Category: Subcontractor
One year after data theft, Primedia (RentPath) employees and applicants notified of breach
I could have sworn I had posted something about the Primedia (formerly RentPath) breach, but maybe I just tweeted it and forgot to blog it. Thankfully, Jeff Goldman of eSecurity Planet provided a preliminary media report in June. This blog post incorporates an update to the incident. Back in May, attorneys for Primedia notified at…
Windhaven Investment Management notifies customers months after vendor-maintained server was hacked (update 3)
Windhaven Investment Management is notifying clients that a server maintained by an unnamed vendor suffered an unauthorized intrusion several months ago. As a result, customers’ names, account numbers, custodians, and investment positions for their Windhaven account(s) may have been accessed. Neither Social Security numbers nor dates of birth were exposed. Windhaven learned of the intrusion last month, but…
PLS Financial notifies customers after vendor’s programming error allowed others to access their information (update)
PLS Financial is notifying customers that a programming error by an unnamed web site operator exposed their personal information to other site users. The programming error, which occurred on July 11, allowed loan applicants to potentially view a restricted part of the site containing names, postal and e-mail addresses, and Social Security numbers. During the…
Bank of Tokyo-Mitsubishi notifies employees after AON Hewitt e-mail gaffe discloses their information
The Bank of Tokyo-Mitsubishi recently notified some employees that their names and Social Security numbers had been erroneously emailed by their vendor AON Hewitt to another client of AON Hewitt. The email error occurred on August 2 and employees were notified on September 3. Although the risk analysis indicated a very low risk of misuse,…
Paymast’r Services notifies customers after service provider’s site hacked
Paymast’r Services, part of FSV Payment Systems in Florida, is notifying consumers about a breach involving an unnamed service provider. The unauthorized access to the provider’s site occurred in July and was discovered on August 2. In an unsigned letter to those affected, they write: Paymast’r Services provided you with a PaychekPLUS! payroll card (your…