It seems like healthcare.gov has had a security breach already in which limited personal information from two applicants was disclosed to another applicant. Kelsey Harris and Rob Bluey report: Justin Hadley logged on to HealthCare.gov to evaluate his insurance options after his health plan was canceled. What he discovered was an apparent security flaw that disclosed eligibility letters addressed…
Category: U.S.
Vendor’s printing error exposes TD Bank customers’ account numbers to other customers
TD Bank has notified thousands of customers after a vendor’s printing error exposed their names, addresses, and account numbers to other customers. In a letter dated October 17, TD Bank’s Head of Privacy & Social Media Compliance Albert M. Raymond notified the New Hampshire Attorney General’s Office of the incident involving customers’ September bank account…
Montgomery Man Sentenced In Identity Theft Related State Income Tax Fraud
John Irving Wheeler, 31 years old, of Montgomery, was sentenced to serve 210 months of incarceration on October 31, 2013. Wheeler was also ordered to pay one million dollars in restitution to the States of Georgia and Michigan. Wheeler pleaded guilty to one count of conspiracy to commit wire fraud and mail fraud on April…
Update: Four arrested for LIRR ticket vending machine skimmers
Lyndsay McCabe reports that four Romanians have been arrested in the case of skimmers and cameras attached to Long Island Railroad ticket vending machines: The ticket vending machine scammers had been using pinhole cameras placed strategically at TVMs to read information entered by commuters, as well as plastic credit card skimmers placed over the bank…
Harbor Freight Tools USA notifies customers that payment processing system was hacked (updated)
Harbor Freight Tools USA has been notifying customers of a hack that occurred in May and was discovered on July 2. In their letter, they write: Over the summer, Harbor Freight Tools’ payment processing system was illegally attacked by cyber-criminals. The attack was similar to attacks reported by other national retailers. In response, we immediately…
Update: Final Defendants Sentenced to Federal Prison for Participating in Identity Theft Scam
On September 30, there was an update from the IRS’s Criminal Investigation unit to an insider breach previously reported on this blog: The final two defendants charged in relation to an identity theft scam that used identities stolen from the Los Angeles County Department of Public Social Services to file fraudulent tax returns were sentenced…