Larry Chaffin writes: I, along with thousands of others, received an interesting e-mail from Cisco this morning warning me that details about me seem to have wound up in the hands of unauthorized people. Cisco Subnet editor, Julie Bort, also received an e-mail tip from a reader about the situation. You know I have many…
Data Breaches: A Black Hole – ITRC
The Identity Theft Resource Center is singing to this choir. Their most recent press release: As of June 30th, The Identity Theft Resource Center® recorded 341 individual breaches for the first six months of 2010. Unfortunately, hundreds of breaches have been veiled from the public, delayed in publication, or not listed on any public lists….
Hacker in AT&T iPad case breaks gagging order
Andy Carvell writes: An alleged hacker has broken the terms of a gagging order to speak out about his arrest and prosecution in an extraordinary rant on his group’s website. Last month, hackers exposed an embarrassing security flaw affecting iPad customers on AT&T, causing red faces all round at the telecoms provider. Shortly after the…
Investor, TJX settle suit over data theft
Hiawatha Bray reports: TJX Cos., which owns the T.J. Maxx and Marshalls discount retail chains, has settled an investor lawsuit related to the theft of millions of its customers’ credit card numbers. The Louisiana Municipal Police Employees’ Retirement System, which holds shares of TJX stock, alleged that members of the TJX board of directors failed…
Pirate Bay Hack Exposes User Booty
Brian Krebs reports: Security weaknesses in the hugely popular file-sharing Web site thepiratebay.org have exposed the user names, e-mail and Internet addresses of more than 4 million Pirate Bay users, according to information obtained by KrebsOnSecurity.com. An Argentinian hacker named Ch Russo said he and two of his associates discovered multiple SQL injection vulnerabilities that…
(follow-up) Private info accidentally released
Fran Handy reports that after the Sparta School District in New Jersey erroneously sent out the unredacted version of a spread sheet containing vendors’ SSN and other information — instead of the redacted one that they had prepared in response to an open records request — the District has had some trouble getting the data…