Sarah N. Lynch reports: A St. Louis-based investment advisory firm will pay $75,000 to settle civil charges alleging it failed “entirely” to protect its clients from a July 2013 cyber attack that was later traced to China, U.S. regulators said on Tuesday. The Securities and Exchange Commission said R.T. Jones Capital Equities Management did not…
Category: U.S.
Malvertising Attack Hits Realtor.com Visitors
Jerome Segura reports: As the debate about online ads is raging thanks to Apple’s introduction of ad blockers in its App Store, malvertising keeps on striking high profile sites. The latest victim is popular real estate website realtor.com, ranked third in its category with an estimated 28 million monthly visits according to SimilarWeb. People browsing the site in the last…
FireEye: Forbes.com served malicious ads to visitors
Steve Ragan reports: In a blog post, researchers from FireEye have outlined a malvertising campaign that was running on Forbes.com earlier this month, which led visitors to landing pages ran by the Neutrino and Angler exploit kits. The attacks were triggered on a handful of articles, but the logs released by FireEye show that none…
More details emerge on Systema Software data leak (update1)
On September 9, Chris Vickery (previously referred to as “TE” in earlier coverage) notified the KDHE that what appeared to be the entire Kansas State Self Insurance Fund SIMS database was exposed online, as were databases from other agencies and organizations. KDHE immediately notified Systema Software, who promptly secured the leaking files. Vickery also contacted DataBreaches.net, who reported on the leak and the…
Former Morgan Stanley adviser pleads guilty to stealing clients’ information
There’s an update in the case of fired Morgan Stanley wealth management adviser Galen Marsh, who had been accused of stealing account data on about 350,000 clients and posting some of that information for sale online. Nate Raymond and Joseph Ax of Reuters report that Marsh pleaded guilty today to swiping more than double the amount of data Morgan…
Molina Healthcare notifies members that CVS employee stole some of their PHI for fraudulent purposes (Updated)
Molina Healthcare is notifying members of a breach of protected health information (PHI) involving an employee of their vendor, CVS. In a letter dated September 17, they write: This is to let you know that CVS, Molina Healthcare’s Over-the-Counter (OTC) benefits vendor, told us on 7/20/15 about a breach of your protected health information (PHI)….