In the justice system: Federal prosecutors in Virginia have leveled conspiracy and bank-fraud charges against the alleged leader and nine members of a national organization of high-tech pickpockets called “Cannon to the Wiz” that’s been the scourge of police around the country since at least early 2007. Personal info on over 120 victims was found…
Category: U.S.
Stolen CS Stars laptop had claimants’ data
On June 2, CS Stars notified the New Hampshire Attorney General that a portable hard drive containing unencrypted personal information was stolen from an employee’s car on May 9. The total number of claimants affected was not indicated, but there were 94 residents of New Hampshire affected. According to their letter (pdf), CS Stars provides…
T-Mobile Hacked? Yes. Maybe. No.
It’s been a confusing few days for those trying to understand what T-Mobile press releases were really saying about what they found when they investigated claims on the Full Disclosure mail list. Their somewhat terse statements led some of us to conclude that they were saying that they had some evidence of data theft, while…
IN: Pharmacy pays fine for jeopardizing patient information
In 2006, WTHR in Indianapolis ran a series of investigative reports on how local pharmacies were trashing sensitive prescription information. Their series resulted in legislative and state investigations and rightfully earned them a Peabody Award for the series. But the impact of their series is still being felt. Today, they report that Low Cost Pharmacy…
Class action lawsuit filed over Aetna hack (updated)
Courthouse News Service reports that a class action claim has been filed against insurance giant Aetna as a result of the recent security breach in which hackers gained access to personal information about 450,000 employees, former employees and potential employees. At the time, Aetna stated that the incident exposed the SSN of approximately 65,000 people….
Update: T-Mobile confirms some data theft
I received an updated statement from T-Mobile overnight. Their revised statement confirms that at least some data were stolen, but they do not confirm that the breach described on the the Full Disclosure mail list was as extensive as the hackers claimed when they posted, “We have everything, their databases, confidental documents, scripts and programs…