Brian Krebs writes: On Monday, KrebsOnSecurity notified the Municipal Bond Insurance Association — the nation’s largest bond insurer — that a misconfiguration in a company Web server had exposed countless customer account numbers, balances and other sensitive data. Much of the information had been indexed by search engines, including a page listing administrative credentials that attackers could use to…
Category: U.S.
Update to AT&T insider breach
Mainstream media has now caught up with the AT&T insider breach I reported on October 3. Reuters reports that 1,600 customers have been notified of the potential compromise of their information.
Why would you let people register their information on your site if you suspect you’ve been hacked?
“WhoComplies” sends along word of his frustrating experience dealing with his child’s apartment complex in California. The complex is owned and operated by Essex Property Trust. Essex is a real estate investment trust (REIT) that acquires, develops, redevelops, and manages 140 multifamily apartment communities in California and Washington. To make monthly rent payments, WhoComplies decided to…
Five indicted in Saks Fifth Avenue customer info theft scheme
Following up on a previously noted breach, five people have been indicted in the acquisition and misuse of nearly two dozen Saks Fifth Avenue customers’ information.
VA: Beach inmate filed false tax returns using prisoners stolen identities
13NewsNow reports: An inmate at Virginia Beach Jail was sentenced to 4.5 years in prison Thursday for fraud after he stole the identity of fellow prisoners and filed false tax returns, officials said. Travis Hager, 24, of Norfolk, Virginia, was sentenced for wire fraud and false claims against the United States. Read more on 13NewsNow
Dear FTC
Why is THIS type of breach still happening? How many more customers will be put at risk of ID theft before Experian deals with what has been a too-frequent problem with client login credentials being misused? I reported one of these breaches in January. I reported one in May. I filed a formal complaint asking FTC to investigate…