I occasionally come across breach notifications that impress me quite favorably. This notification by Nourse Farms is a good example of a strong incident response described in a strong letter that will be more likely to reassure customers than infuriate them.
Noodles & Company sued by financial institutions over breach
The Denver Channel reports that Noodles & Company has been sued by financial institutions who allege that they suffered injury as a result of a databreach first reported in May – a breach they claim could have been avoided had Noodles & Company learned from all the hacks of other major retailers and deployed adequate security….
FL: Accused hacker apologizes to Lee County elections official
There’s a follow-up to a case previously noted on this site. WINK News reports: Cyber expert and owner of Vanguard Cybersecurity, David Michael Levin, pleaded guilty to one misdemeanor charge for hacking into the Lee County elections website Tuesday. Levin’s plea for a misdemeanor was a reduction to the felony charges he faced. He will…
Hacker takes down CEO wire transfer scammers, sends their Win 10 creds to the cops
It’s nice to read reports where the good guys screw the bad guys… Darren Pauli reports: HITB Florian Lukavsky hacks criminals profiting from out-of-control multi-billion dollar CEO wire transfer scams… and they hate him for it. The director of SEC Consult’s Singapore office has made a name striking back at so-called “whaling” scammers by sending malicious Word documents…
Village of Oak Park incident reported to HHS six months later?
So it seems there was a reported insider breach affecting the Village of Oak Park, Illinois earlier this year. It was picked up by their local media at the time, but never reported to HHS. It’s now been reported to HHS, which is what sent me looking for coverage. On February 25, the Cook County Chronicle…
As databases from old hacks appear, they also go up for sale
The free market system might appear to be alive and well on the dark web. As sites like LeakedSource add newly leaked databases from hacks in 2012-2015, we are also likely to find the databases up for sale on sites like dark web marketplaces. For current examples, see the listings for the Dropbox database and BitcoinTalk forum database:…