The Epsilon hack reported earlier as affecting Kroger customers also affected JPMorgan Chase customers. From the financial firm’s web site, this press release: JPMorgan Chase (NYSE: JPM) Chase announced today that we were informed by Epsilon, a marketing vendor we use to send e-mails, that an unauthorized person outside their company accessed files that included e-mail…
Category: Subcontractor
Kroger customer data stolen from Epsilon (update2)
Yet another email service provider has been compromised for customer names and email addresses. Kroger Co. is letting customers know a breach of a database with its customers’ names and email addresses. The breach occurred at Epsilon, a national third-party email fulfillment company headquartered in Dallas. […] In the email Kroger sent to customers, the…
UK: 83,000 customer details leaked by Co-op
Joe McGrath reports: The Co-operative Group has issued a public apology after a data error led to the customer details of 83,000 people being published online. Customers of Co-operative Life Planning and Co-operative Wills & Funeral Planning were affected by the error at a third party support services provider which resulted in the customer details…
Maine Bureau of Parks and Lands learns online state park pass purchase site was compromised last year; 970 notified
Rob Poindexter reports: Credit card information may have been stolen for some people who bought state park passes on line. The Maine Bureau of Parks and Lands learned in February that their online system for the sale of state park passes, provided by a private vendor, was hacked by “malware.” The breach happened between March…
Play.com users newest victims of SilverPop breach
Anh Nguyen provides an update on a breach reported on PogoWasRight.org yesterday. At the time, I had raised the possibility that the breach might be linked to a previously known breach involving SilverPop. It turns out that was the explanation: Play.com has emailed its customers again to shed more light on the security breach it…
UK: Wolverhampton City Council breached Data Protection Act; Confidential records dumped in skip
From the ICO: Wolverhampton City Council breached the Data Protection Act by allowing confidential personal information to be disposed of in a skip, the Information Commissioner’s Office (ICO) said today. The ICO first became aware of the breach in October 2010 when a local newspaper reported that council documents containing names, dates of birth, bank…