Brian Krebs reports: Nearly a week after this blog first reported signs that Home Depot was battling a major security incident, the company has acknowledged that it suffered a credit and debit card breach involving its U.S. and Canadian stores dating back to April 2014. Home Depot was quick to assure customers and banks that no debit card PIN data was…
Category: U.S.
Yandy notifies online customers of breach
If you purchased lingerie or other items from Phoenix-based Yandy.com, you may be getting a breach notification. Yandy reports that they became aware of the breach on August 18, and it involved customers’ names, postal and email addresses, card numbers, expiration dates, and CVV codes. Although the notification letter, signed only by “The Yandy Team,” does…
NCQA spots – and stops – ecommerce breach quickly
How quickly can your organization detect and stop a breach? It looks like the National Committee for Quality Assurance (NCQA) caught one pretty quickly, as it only affected customers making online purchases on September 3 between 2 am and 10 am. They called those affected, and by September 5, were sending out letters to those…
Home Depot Confirms Data Breach
From their web site today: Last Tuesday, September 2, we disclosed that we were investigating a possible breach of our payment data systems. We want you to know that we have now confirmed that those systems have in fact been breached, which could potentially impact any customer that has used their payment card at our…
Target, arguing it’s not liable, files for dismissal of data breach suit
Tom Webb reports: Target is asking a federal judge in St. Paul to dismiss a multibillion-dollar complaint filed by groups of banks stemming from last year’s massive data breach. The banks claim Target was negligent in its handling of shoppers’ credit and debit card information, which allowed hackers to steal sensitive information about some 100…
A file in the wrong place led to discovery of CSU-East Bay’s breach
Karina Ioffee provides additional details on the CSU – East Bay breach reported yesterday: The intrusion on August 23, 2013 by an unknown person using malicious software was discovered August 11 during a routine security check by the university’s technology department, said Jeff Bliss, a university spokesman. Bliss said university IT workers found that there…