Brookstone is notifying customers that their email service provider was compromised. Although not named in the email notice, the timing of this suggests that it may be Epsilon. I had contacted Epsilon earlier this evening to inquire whether they would just disclose a list of affected clients, but they had declined to do so. A…
Category: U.S.
Epsilon breach also affects JPMorgan Chase customers
The Epsilon hack reported earlier as affecting Kroger customers also affected JPMorgan Chase customers. From the financial firm’s web site, this press release: JPMorgan Chase (NYSE: JPM) Chase announced today that we were informed by Epsilon, a marketing vendor we use to send e-mails, that an unauthorized person outside their company accessed files that included e-mail…
Hackers compromising some iTunes accounts
Matt Liebowitz reports: Hacked accounts and fraudulent purchases are leaving iTunes users singing a sad song — again. Crafty computer criminals are compromising users’ iTunes accounts and purchasing hundreds of dollars worth of music, apps, gift cards, ringtones and games, the security firm Kaspersky Lab reported. The hacks, discussed in detail in an Apple Discussions…
Kroger customer data stolen from Epsilon (update2)
Yet another email service provider has been compromised for customer names and email addresses. Kroger Co. is letting customers know a breach of a database with its customers’ names and email addresses. The breach occurred at Epsilon, a national third-party email fulfillment company headquartered in Dallas. […] In the email Kroger sent to customers, the…
Calif. property tax payment system hacked from Philippines
Mike Harris reports: Ventura County’s online credit card payment system was apparently hacked from the Philippines, enabling scam emails to be sent to many residents who used the system to pay their 2007 property taxes, officials said this week. Treasurer-Tax Collector Steven Hintz said the phishing emails appeared to be sent over the weekend in…
WA: Wenatchee Valley College notifies former students of data breach
Rachel Schleif reports on another breach that occurred in the context of responding to a public records request: Wenatchee Valley College accidentally released Social Security numbers of students who attended classes there 10 years ago. The college sent letters of apology to more than 3,800 former students Monday, and urged them to place fraud alerts…