Not all phishing attempts are spear-phishing for W-2 forms. The University of Idaho is notifying employees whose personal information was in an employee’s email account after the employee fell for a phishing attack. From their notification: On January 24, 2017, we detected that one of our accounts was being used to send phishing email. The…
Category: U.S.
Payments Giant Verifone Investigating Breach Affecting Gas Stations
Brian Krebs reports: Credit and debit card payments giant Verifone [NYSE: PAY] is investigating a breach of its internal computer networks that appears to have impacted a number of companies running its point-of-sale solutions, according to sources. Verifone says the extent of the breach was limited to its corporate network and that its payment services network was not…
RI: DHS glitch results in 1095-B tax forms being sent to wrong parties
Katie Davis reports: A new glitch in the computer system at Rhode Island’s Department of Human Services resulted in more than 1,000 people receiving tax forms with the wrong information, putting their personal information at risk, state officials said Monday. The system, known as UHIP, has been plagued by problems since its launch in September…
Sunnyside Unified School District email gaffe exposed employees’ info
Barbara Grijalva and Maria Hechanova report: A pretty big mistake had Tucson’s second largest school district scrambling to make sure its employees won’t be hurt. Personal employee information was accidentally emailed to every Sunnyside Unified School District employee. That’s more than 2,000 people. According to the district’s IT department, at least 559 employees opened that email….
Daytona State College notifies staff of potential W-2 incident
On February 19, I reported that I was finding 2016 W-2 tax statements for sale on the darknet. In that post, I noted that I was not identifying one Florida college I had contacted that day to alert them that at least one of their employees’ W-2 statements was up for sale – and that others might…
Solarwinds sends customers each others’ complete client lists
Alexander J. Martin reports: Software company Solarwinds, which sells IT management tools, has infuriated customers after a faulty alert exposed customers’ entire client lists to their competitors. An unspecified issue affecting the Texas-based business’ RemoteManagement tool, which it gained after acquiring Dundee-based LogicNow, led to a mass leaking of business data last Friday morning. Read…