Bill Toulas reports: Analysts have found the source of a mass breach of over 500 e-commerce stores running the Magento 1 platform and involves a single domain loading a credit card skimmer on all of them. According to Sansec, the attack became evident late last month when their crawler discovered 374 infections on the same…
Agency Finds ‘No Error’ as Scammer Steals $15K from Excluded Workers Fund for Luxury Watches
Rommel H. Ojeda reports: On December 3rd, Stephanie, a Chinese immigrant and resident of Nassau County, was skeptical about using the ATM at her 7/11 in Garden City. She had seen warnings in the news about credit card skimming that had taken place in New York City. She inspected the ATM with scrutiny, looking for any…
Inmediata Data Breach $1.1M Class Action Settlement
In April 2019, Puerto-Rico headquartered Inmediata issued a press release concerning a data leak it had discovered in January of that year. The business associate’s press release explained, in relevant part: In January 2019, Inmediata became aware that some electronic health information was viewable online due to a webpage setting that permitted search engines to index…
Canadian Hacker Bowser Sentenced To Three Years In Jail For Crimes Against Nintendo
On February 4, we learned that the government was seeking a 5-year sentence for Canadian hacker Gary Bowser, in addition to restitution, and three years supervised release following prison. Today, Bowser was sentenced to three years in prison. Kate Gray reports: Bowser’s group built and sold devices that were used to hack consoles, which can…
One year after it started, LendUs discloses that they had a breach
As you read the following press release, note that they do not tell us when they first discovered that there might have been a security breach or incident. Nor do they tell us how they first discovered it. And what’s with this “out of an abundance of caution” claim? If you can’t figure out what…
FL: Ransomware group claims to have stolen data on 260,000 patients from Jax Spine and Pain Centers; victim remains silent (UPDATED)
Update of February 24, 2022: Jacksonville Spine Center, P.A. (JAX Spine and Pain Centers) reported a hacking incident to HHS on February 10 — the same date that this site first reported on claims by Avos Locker to have acquired data on 260,000 patients. JAX never responded to this site’s inquiries, but seems to have…