In response to recent news coverage indicating that breaches affecting McDonald’s, DeviantART customers (and possibly Walgreens customers?) were due to a breach at Silverpop, their CEO Bill Nussey responds on Silverpop’s blog: The forensic investigation into the cyber attack on our company and customers has yielded some valuable insights. First, we have confirmed that our…
Category: U.S.
(follow-up) FL Bus Driver Sentenced For Stealing Disabled Patrons’ Identities
As a follow-up to a case originally mentioned on this blog in October, News4Jax.com reports that Watreka Ligon has been sentenced to 3 1/2 years in prison for stealing the identities of disabled bus patrons. She has also been ordered to pay restitution. Ligon had been working for MV Transport, a contractor for Central Florida…
NYC: 15,000 Social security numbers stolen from state computers by subcontractor
Thousands of Social Security numbers have been stolen from the computers of a New York state agency. The Social Security Administration in New York City says that the Social Security numbers were stolen by a subcontractor who was working in Office of Temporary Disability Assistance making computer infrastructure upgrades. The administration says, while performing the upgrades,…
Personal info on drug informants, suspects, others exposed in Colo.
Kathleen Hickey provides a few more details on the Mesa County, Colorado breach (previously mentioned on this blog) that exposed personal information on informants and others: Potentially more than 200,000 files from the Mesa County Sheriff’s Office of Colorado, including sensitive data such as names, Social Security numbers and contact information on drug informants, employees,…
PA: Two arrested at Limerick outlets for identity theft
Ellen Faust reports: Two New York men were arrested after being caught at a store with false identities and hundreds of bank account numbers, Social Security numbers and other personal information that was not their own. Vladimir Pascal, aka Derrick Brown, and David Rice, aka Clifford Augustine, both of Brooklyn, N.Y., were to be arraigned…
Ohio State notifies 760,000 of unauthorized access to university server
Earlier this year, Ohio State University (OSU) noted that they had been averaging about data breaches per year, usually minor, but involving SSN. Yesterday, they revealed another breach. I’m not sure how you try to minimize access to a server containing PII on 760,000 people or a finding that your server was used to launch…