Catherine Shaffer reports: As many as 1.87 million Michigan workers may have had their personal information exposed through a newly discovered security vulnerability in the computer system used by the Michigan Unemployment Insurance Agency. The information release affects workers whose paychecks are processed by a third-party payroll vendor. A software update installed in October 2016…
InterContinental reports payment card breach at 12 U.S. hotels
Reuters reports that Intercontinental Hotels has now confirmed a breach that was first reported by Brian Krebs in December: InterContinental Hotels Group Plc said on Friday that a malware in the servers at 12 of its hotels in the United States tracked payment card data if the card was used at the hotels’ restaurants and…
Hackers break into Polish banks through government regulator charged with bank security standards
Patrick O’Neill reports: Polish banks have spent the last week searching for hackers who broke into several of the country’s financial institutions in an incident that looks to be three months old, according to Polish media. The malware infection appears to have come through — of all things — compromised servers at the Polish financial regulator KNF, which…
UK: Hundreds of confidential email addresses were shared with landlords operating in Cardiff
Seriously? Still? Cardiff council says it will investigate after hundreds of confidential email addresses were published. Landlords who are on the mailing list for Rent Smart Wales received an email on Thursday from a Cardiff council email address. In that email, the email addresses of all recipients were visible. Read more on WalesOnline.
PIP Printing and Marketing Services exposed 400GB of data, including personal information
MacKeeper Security Research Center reports that PIP Printing and Marketing Services, a franchise of Franchise Services in California, was leaking data: The majority of 400+ GB server is dedicated to design files and images relating to the printing business. The most sensitive information is contained within the “Outlook archives” and “Scans” folders. These contain around…
United Arab Emirates: Cyber Security And Data Protection Breaches: A Brief Comparative Review
Simon Isgar and Bernadette Pinto of Kennedys write, in part: The Saudi Aramco attack of 2012 has been described3 as the first ‘hackavist-style’ assault to use malware. The attack managed to destroy 30,000 computers within the Aramco network, which were believed by security researchers to have been infected with the Shamoon malware. The consequences faced by…