Patrick O’Neill reports the latest litigation update involving Excellus, whose breach was covered on this site in 2015: Four years after Excellus BlueCross BlueShield was hacked and more than 10 million members had their data exposed, the insurer remains on the defensive in class action lawsuits claiming it ignored cybersecurity at peril of its own members….
Category: U.S.
Columbia Sportswear Accuses Former IT Employee Of Hacking
Steven Trader reports: Columbia Sportswear Co. on Wednesday filed a lawsuit in Oregon federal court accusing a former employee in its information technology department of illegally hacking into its computer system after he resigned and assessing highly confidential company information for the benefit of the company’s business partner that hired him. You can read more…
Yahoo says 32m user accounts were accessed via cookie forging attack
Asha McLean reports: Yahoo has said that an unauthorised third party accessed the company’s proprietary code to learn how to forge certain cookies, which it said resulted in an intruder accessing approximately 32 million user accounts without a password. “The outside forensic experts have identified approximately 32 million user accounts for which they believe forged…
It was a good day for dumpster divers…
Steve Barrett reports from Florida: An Orlando man searching for scrap metal Tuesday night reported finding thousands of financial documents ripe with people’s personal information tossed in a dumpster. For identity thieves, the documents would have been a gold mine of information. “(They contained) emails, phone numbers, date of birth, child’s date of birth, you…
Eight Individuals Face Fraud, Identity Theft Charges Involving Possession of Names, Information of More Than 143,000 Individuals
February 17 – A 56-count federal indictment returned by a Utah grand jury charges eight individuals in connection with what the indictment alleges was a scheme to use fraudulently created identification documents and fraudulently obtained bank account information to open store credit accounts. The defendants then used the newly-obtained credit to make purchases at various merchants…
Aptos malware breach affected 40 online retail stores
Aptos, Inc. provides e-commerce solutions for a number of online e-tailers. In November, 2016, Aptos discovered it had a malware breach from February, 2016 – December, 2016. At law enforcement’s request, they delayed notification to their clients, so we are first finding out about it now as the clients begin to disclose the breach to their customers. So far,…