Patricia Hurtado reports: A Russian who admitted creating a computer virus that infected more than 1 million computers worldwide was spared from additional prison time on top of the the three years he’s already spent locked up after U.S. prosecutors lauded his cooperation with their probe. Nikita Kuzmin, who was arrested in 2010 and pleaded…
“Large number of” Brunswick Corporation employees being notified of W-2 data breach
Another day, another phishing for W-2 incident. WFRV reports that Mercury Marine issued a press release today stating that its parent company, Brunswick Corporation, had been a victim of an email phishing scam. Brunswick, who had more than 13,000 employees globally in 2015, issued the following statement today: Brunswick Corporation today reported it has been the victim of an email phishing incident…
Stanford University continues to investigate breach involving employee W-2 data
There’s been an update to a previously noted breach report out of Stanford University. On April 12, I had reported that compromise of employees’ W-2 data had been linked to the university’s service vendor, W-2 Express, a service of Equifax. The breach did not appear to involve a breach of W-2 Express’s system or of Stanford University’s network. Rather,…
Payroll vendor employee falls for phishing scam, all clients’ W-2 data involved
It is bad enough when an employee falls for a phishing scheme that exposes fellow employees’ W-2 information. It is downright painful when an employee of a payroll services vendor falls for a scam and emails every clients’ W-2 data to criminals. Sadly, that is what happened to Alpha Payroll Services LLC. Read my story on Daily Dot.
State audit finds concerns with data security, accounting practices in Ozark County
KY3 reports: Missouri State Auditor Nicole Galloway on Monday released an audit of Ozark County. The audit report describes weaknesses in cybersecurity measures and accounting practices in several county offices. Some offices lacked sufficient password protection controls, including a lack of requirements and the use of shared passwords to access county computers. Other offices failed…
PA Court Rejects Healthcare Data Breach Class Action Lawsuit
Elizabeth Snell reports an update to a 2010 breach previously covered on this site: The Pennsylvania Superior Court recently dismissed claims in a healthcare data breach class action lawsuit, explaining that the trial court needs to review the plaintiff’s claim under the Uniform Trade Practices and Consumer Protection Law (UTPCPL). In the case Baum v. Keystone Mercy Health…