Attorney General Eric T. Schneiderman today announced the arrest and indictment of five individuals for running an alleged identity-theft ring targeting customers of local banks. The defendants stole over $850,000 by having bank tellers access and steal personal information of hundreds of unsuspecting customers – account numbers and Social Security numbers, for example – and…
Category: U.S.
Breach at Goodwill Vendor Lasted 18 Months
Brian Krebs reports: C&K Systems Inc., a third-party payment vendor blamed for a credit and debit card breach at more than 330 Goodwill locations nationwide, disclosed this week that the intrusion lasted more than 18 months and has impacted at least two other organizations. Read more on KrebsOnSecurity.com. I wonder when we’ll find out who the other two C&K clients were….
Mississippi woman sentenced for role in stolen identity fraud case
This may be related to another prosecution previously noted on this blog, even though this defendant was not listed as one of the co-conspirators in that case: Ciara Gooden, age 24, of Jackson, was sentenced this week to 30 months for conspiracy to defraud the United States. Gooden previously pled guilty to her role in…
After Breach, JPMorgan Still Seeks to Determine Extent of Attack
Nicole Perlroth and Matthew Goldstein report: The headache caused by the attack on JPMorgan Chase’s computer network this summer may not go away anytime soon. Over two months, hackers gained entry to dozens of the bank’s servers, said three people with knowledge of the bank’s investigation into the episode who spoke on the condition of…
NY: Saks workers caught binge shopping with customer cards
Jamie Schram and Bob Fredericks report: A crew of Saks Fifth Avenue employees was busted after they charged at least $400,000 worth of luxury shoes, handbags and other items using customers’ stolen credit card numbers, authorities said Wednesday. Six workers at the Midtown fashion Mecca swiped credit card data from 22 customers in a spending…
George Mason University notifies 4,400 of malware intrusion
George Mason University recently notified 4,400 people that personal information stored in a Travel Request Applications database could have been accessed due to a malware intrusion. Forensic examination of the server did not find any evidence of access to the data or exfiltration, but could not conclusively rule out the possibility. The intrusion was discovered…