Business Post reports: Mobile phone company Three suffered a data protection breach today that saw dozens of its business customers’ billing data exposed. The Sunday Business Post understand the breach occurred when the businesses in question requested additional copies of their bills, which were subsequently sent to the wrong addresses. Read more on Business Post.
North Dorset Council hit by ransomware, flips the bird at miscreants
Kat Hall reports: North Dorset District Council is working with police to identify the source of a ransomware attack this week, the latest incident in what security experts believe to be a growing problem for local authorities. According to an email seen by The Register, the attack had infected 6,000 files on the council’s servers by…
Steam Users Hit by Christmas Day Breach Finally Notified
Stephanie Mlot reports: Valve has apologized for a winter Steam Sale breach—more than two months after 34,000 users had personal information exposed to other shoppers. The target of a Christmas Day denial of service attack, the online shop was overwhelmed by 2,000 percent more traffic than usual. In an effort to counter the assault, a Valve partner…
California man hacked CMU student’s account, prosecutors say
Brian Bowling reports: A California college student hacked the student account of a Carnegie Mellon University student to steal her identity and attempt to get credit cards and personal loans in her name, federal prosecutors said. A federal grand jury indicted Dennis C. Liu, 23, of San Marino, Calif., in May on three counts of…
PA: Luzerne County Community College email gaffe exposed faculty SSNs, W-2 info
Eric Mark reports: An email mistakenly sent by Luzerne County Community College to staff and faculty members on Wednesday has raised privacy concerns about personal information contained in an attachment to the message. The email, sent Wednesday afternoon to 264 full-time LCCC employees, concerned revisions to W-2 forms for faculty and staff members. However, the…
More employee W-2 data breaches reported (update1)
Add AmeriPride and Actifio to the ever-growing list of companies whose employees’ W-2 info was snagged by criminals via phishing. If your company didn’t urgently re-train employees about this growing problem with phishing and business email compromises, do it now. Update 1: Add Evening Post Industries to the list of those whose employees fell for business email…