Seen on Travel Mole: Holiday Extras is investigating how the email addresses of nearly 5,000 of its customers were wrongly shared online. It is contacting 4,852 customers to tell them about the security breach, which it blamed on a mistake by one of its marketing partners. In a note to its customers, Holiday Extras assured…
U.S. Agent Lures Romanian Hackers in Subway Data Heist
Del Quentin Wilber reports: … The Secret Service and FBI are investigating an increasing number of attacks on U.S. retailers’ data, including the massive breach of Target Corp. (TGT:US) last year that affected more than 40 million debit and credit card accounts. Investigators won’t talk about the Target probe. Instead, the Secret Service pointed to O’Neill’s investigation that…
Ca: RCMP charge 19-year-old man in Heartbleed privacy breach at Canada Revenue Agency
Christina Commisso reports: A 19-year-old man from London, Ont., has been charged in connection with using the Heartbleed bug to exploit taxpayer data from the Canada Revenue Agency website. The RCMP announced Wednesday that Stephen Arthuro Solis-Reyes was arrested at his home Tuesday without incident. He has since been released and is staying with his…
Court Rules SilverPop Not Liable for Damages After Data Breach
Back in 2010 and 2011, I posted a number of blog entries about a breach at SilverPop. SilverPop was not particularly transparent/forthcoming about the scope of the breach, but it seemed to be pretty large. Today, Ryan M. Martin of Winston & Strawn LLP writes: A Georgia court recently agreed on a summary judgment motion…
FL: Victoria’s Secret clerk stole tourists’ credit-card information, cops say
Susan Jacobson reports: A clerk at an Orlando Victoria’s Secret outlet store used a skimmer to steal tourists’ credit-card information and then sell it, federal prosecutors allege. Between Nov. 29 and April 3, the woman hid the skimmer under her skirt at Orlando Premium Outlets on International Drive and swiped customers’ cards before running them through the cash register,…
Half to one third of personal data in Bulgaria ‘completely compromised’
The Sofia Globe reports: The scandal in Bulgaria about illicit use of personal data by some political parties to file election registration applications has highlighted the lack of security of official personal identity numbers. Such numbers, commonly known by their Bulgarian abbreviation as EGNs, can be found on the internet, such as on lists of…