Shannon Prather reports: In what could be one of the first tests of the state’s new tougher data practices laws, the police chief in St. Francis recently initiated a criminal investigation into one of his own officers on allegations that he illegally accessed private data. The officer is accused of viewing recordings of candidates interviewing…
Category: U.S.
C’mon, folks, you really need to acknowledge breach notifications, Monday edition
I haven’t kept strict statistics, but in general, most entities that I try to notify of a breach fail to respond at all. Others may respond that they’re looking into claimed hacks, but then fail to get back to me with a definitive answer or statement. Here’s another case in point: On January 10, I…
Metropolitan State U. disclosed breach, but what about other .edu targets of Abdilo?
On December 31, a self-described teenage hacker from Australia who calls himself “Abdilo” claimed to have hacked into dozens of education entities by exploiting SQLi vulnerabilities. Metropolitan State University acknowledged they were breached, but what is going on with the other educational entities that were allegedly hacked, too? Abdilo claims that he started attacking .edu sites back in…
Wingstop Announces Data Security Incident Affecting Four Franchise Locations
DALLAS — Wingstop today announced that four of its independently owned and operated franchise locations may have been impacted by a data security attack on point-of-sale (POS) systems that could have enabled attackers to capture customer payment card information such as account number, expiration date or cardholder name. After receiving indications of suspicious activity, the company…
MN: Hacker breached Metropolitan State University database with personal info
Maura Lerner reports: Metro State University is investigating a computer security breach that may have exposed personal information about students, faculty and staff. In a campuswide e-mail Friday, interim president Devinder Malhotra wrote that a computer hacker apparently got “unauthorized access” to the university database in mid-December, and that investigators are still trying to determine…
Ex-Citadel employee sentenced to three years for data theft
Bloomberg reports: A former Citadel LLC employee who admitted stealing data from the Chicago-based investment firm as well as high-frequency trading computer code from a New Jersey company was sentenced to three years in prison. Yihao “Ben” Pu, who was charged in 2011, pleaded guilty in August to stealing proprietary information from Citadel in 2011 and to…