The “Impact Team” hackers who on Tuesday evening posted 10 gigabytes of user data from infidelity-facilitator Ashley Madison seem to have released a second trove of company data on Thursday. And this one is double the size at nearly 20GB.
Unlike the first data dump, this one isn't a accompanied by a full letter. Instead the message from the hackers is simple: "Hey Noel, you can admit it's real now." Noel Biderman is the CEO of Ashley Madison owner Avid Life Media.
The Data Breach Thread
Moderators: Bakhtosh, EvilHomer3k
- Moliere
- Posts: 12380
- Joined: Sun Sep 03, 2006 10:57 am
- Location: Walking through a desert land
Re: The Data Breach Thread
The time with website source code.
"The world is suffering more today from the good people who want to mind other men's business than it is from the bad people who are willing to let everybody look after their own individual affairs." - Clarence Darrow
- El Guapo
- Posts: 41540
- Joined: Sat Jul 09, 2005 4:01 pm
- Location: Boston
Re: The Data Breach Thread
So the new stuff is company emails and source code, as opposed to the previous which was user data?
Black Lives Matter.
- GreenGoo
- Posts: 42579
- Joined: Thu Oct 14, 2004 10:46 pm
- Location: Ottawa, ON
Re: The Data Breach Thread
re: Rip's post about research.
Well, of course. Or someone is using my email address without my permission. Whatever is easier to believe, that's my story and I swear to it.
Well, of course. Or someone is using my email address without my permission. Whatever is easier to believe, that's my story and I swear to it.
- Moliere
- Posts: 12380
- Joined: Sun Sep 03, 2006 10:57 am
- Location: Walking through a desert land
Re: The Data Breach Thread
UT represent!
"The world is suffering more today from the good people who want to mind other men's business than it is from the bad people who are willing to let everybody look after their own individual affairs." - Clarence Darrow
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Suicide investigations
The hack of the cheating website Ashley Madison has triggered extortion crimes and led to two unconfirmed reports of suicides, Canadian police said Monday.
The company behind Ashley Madison is offering a $500,000 reward for information leading to the arrest of members of a group that hacked the site.
...
[Toronto Police acting staff-Supt. Bryce] Evans said there are confirmed cases of criminals attempting to extort Ashley Madison clients by threatening to expose them unless payment is received.
The police official did not offer further details of the unconfirmed suicides. He also said hate crimes may be connected to the hack but did not provide details.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
Uber.
Though this is less a breach and more an "Oops!" from riders and drivers not un-sharing their rides.On Thursday, a site-specific search on Google for trip.uber.com produced dozens of links to Uber rides that have been completed and cancelled, in countries around the world including the U.S., England, Russia, France and Mexico.
Each link leads to a Web site with a map showing the ride's route, with the pickup and destination tagged with markers. A card on the page also shows the first name of the rider and driver, along the driver's photo, make and model of the car, and license plate number.
...
In the code, exact addresses for the pick-up spot and destination can be found. So can the car's license plate and the exact date and time of the ride.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- El Guapo
- Posts: 41540
- Joined: Sat Jul 09, 2005 4:01 pm
- Location: Boston
Re: The Data Breach Thread
So if I understand this right, unless I specifically shared ride links on social media, this doesn't impact me?LawBeefaroni wrote:Uber.
Though this is less a breach and more an "Oops!" from riders and drivers not un-sharing their rides.On Thursday, a site-specific search on Google for trip.uber.com produced dozens of links to Uber rides that have been completed and cancelled, in countries around the world including the U.S., England, Russia, France and Mexico.
Each link leads to a Web site with a map showing the ride's route, with the pickup and destination tagged with markers. A card on the page also shows the first name of the rider and driver, along the driver's photo, make and model of the car, and license plate number.
...
In the code, exact addresses for the pick-up spot and destination can be found. So can the car's license plate and the exact date and time of the ride.
Black Lives Matter.
- Moliere
- Posts: 12380
- Joined: Sun Sep 03, 2006 10:57 am
- Location: Walking through a desert land
Re: The Data Breach Thread
"The world is suffering more today from the good people who want to mind other men's business than it is from the bad people who are willing to let everybody look after their own individual affairs." - Clarence Darrow
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
According to Uber, that's the case. You had to use the Share Your ETA feature. If that Share Your ETA link makes it anywhere that Google indexes, it shows up in a search. But as far as I can tell it's always been unsecured. Just not easily found.El Guapo wrote:So if I understand this right, unless I specifically shared ride links on social media, this doesn't impact me?LawBeefaroni wrote:Uber.
Though this is less a breach and more an "Oops!" from riders and drivers not un-sharing their rides.On Thursday, a site-specific search on Google for trip.uber.com produced dozens of links to Uber rides that have been completed and cancelled, in countries around the world including the U.S., England, Russia, France and Mexico.
Each link leads to a Web site with a map showing the ride's route, with the pickup and destination tagged with markers. A card on the page also shows the first name of the rider and driver, along the driver's photo, make and model of the car, and license plate number.
...
In the code, exact addresses for the pick-up spot and destination can be found. So can the car's license plate and the exact date and time of the ride.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Cal State via We End Violence
A data breach at a third-party vendor that provides online training to prevent sexual violence has exposed the personal information of 79,000 students at eight California State University campuses, school officials said.
Cal State said the hack of computer systems of the vendor, We End Violence, compromised the data of students at CSU Channel Islands, Cal State Los Angeles, CSU San Bernardino, CSU Maritime Academy, California Polytechnic University (Pomona), CSU Northridge, San Diego State and Sonoma State University.
...
We End Violence has a contract with Cal State to provide a one-hour online training class on sexual violence prevention. The noncredit class is required for all students under state law.
The exposed data included names, student IDs, campus-issued email addresses and mailing addresses. Cal State officials said no Social Security numbers, driver's license numbers or other personal identifiable information was put at risk.
School officials have notified all impacted students, and their login information has been erased.
It's almost as if people are the problem.
- El Guapo
- Posts: 41540
- Joined: Sat Jul 09, 2005 4:01 pm
- Location: Boston
Re: The Data Breach Thread
Does it qualify as a breach if the door was left wide open?
Boston’s License Plate Reader Database Was Online in Plain Text With No Password Protection
Boston’s License Plate Reader Database Was Online in Plain Text With No Password Protection
Black Lives Matter.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
We really need better ways to punish government for acting with callous disregard to its citizens. You'd be hard pressed to prove any damages, and any financial damages are the equivalent of taking money out of your own pocket. It's sure not a huge enough deal that anyone is going to get voted out of office. And a scapegoat isn't going to solve anything.
It's almost as if people are the problem.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Your luggage:
It's a basic fact of life that once you publish something on the Internet, it's pretty much impossible to get it back. Now illustrating that point with painful clarity, images of the TSA's master luggage keys have been published online, meaning that anyone with a 3D printer can make their own.
It all started when The Washington Post published a story last November about "the secret life of baggage" that was reportedly accompanied -- only briefly -- by a photo of the master keys the Transportation Security Administration uses to open what it calls "TSA recognized" luggage locks.
The photo was hastily taken down, but -- predictably -- not before it was snagged and circulated. Reports about the leak began to appear last month, but it wasn't until this week that detailed blueprints showed up on GitHub.
...
Now, anyone with a 3D printer can create their own copies of the TSA master keys -- and create them they have, according to reports from exuberant users.
...
The TSA's master keys are designed to enable security officers to inspect luggage without having to cut off any locks protecting it. They work on locks created specifically for that purpose through partnerships between the agency and lock manufacturers.
It's almost as if people are the problem.
- Moliere
- Posts: 12380
- Joined: Sun Sep 03, 2006 10:57 am
- Location: Walking through a desert land
Re: The Data Breach Thread
Your fingerprints
On Wednesday, the Office of Personnel Management admitted that the number of federal employees’ fingerprints compromised in the massive breach of its servers revealed over the summer has grown from 1.1 million to 5.6 million.
"The world is suffering more today from the good people who want to mind other men's business than it is from the bad people who are willing to let everybody look after their own individual affairs." - Clarence Darrow
-
- Posts: 1590
- Joined: Fri Jan 14, 2005 10:30 am
Re: The Data Breach Thread
wowMoliere wrote:Your fingerprints
On Wednesday, the Office of Personnel Management admitted that the number of federal employees’ fingerprints compromised in the massive breach of its servers revealed over the summer has grown from 1.1 million to 5.6 million.
-
- Posts: 3057
- Joined: Sat Jan 01, 2005 11:03 pm
Re: The Data Breach Thread
Well, duh! Each employee has five fingers on their hand.Moliere wrote:Your fingerprints
On Wednesday, the Office of Personnel Management admitted that the number of federal employees’ fingerprints compromised in the massive breach of its servers revealed over the summer has grown from 1.1 million to 5.6 million.
Sims 3 and signature unclear.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
Nice.Freyland wrote:Well, duh! Each employee has five fingers on their hand.Moliere wrote:Your fingerprints
On Wednesday, the Office of Personnel Management admitted that the number of federal employees’ fingerprints compromised in the massive breach of its servers revealed over the summer has grown from 1.1 million to 5.6 million.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
-
- Posts: 3057
- Joined: Sat Jan 01, 2005 11:03 pm
Re: The Data Breach Thread
Sims 3 and signature unclear.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
WE have come to an understanding:
The United States and China have agreed not to "conduct or knowingly support" cyber-theft of intellectual property or commercial trade secrets, the presidents of both countries announced Friday in an address at the White House Rose Garden.
Chinese President Xi Jinping, whose arrival in the U.S. this week marked his first-ever visit as president, jointly led the press conference with Obama. Despite mounting reports of cyberattacks on U.S. entities being linked to China, the nation has repeatedly denied involvement in such hacks.
"I raised, once again, our very serious concerns about growing cyber threats," Obama said of his discussions with Xi. "I indicated that it has to stop."
The agreement didn't go as far as some had hoped. Obama stopped short of calling the conclusion a true cease-fire, characterizing the talks instead as a "common understanding on the way forward."
In addition to the agreement to stop theft of trade secrets, China and the U.S. will also create two related working groups: one panel of experts who will hold "further discussions" on the cyber topic," and "a high-level" group focused on how to fight cyber crime, the White House said in a statement that provided more details. That high-level group will meet once by the end of 2015 and twice a year after that.
It's almost as if people are the problem.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Hilton
Multiple sources in the banking industry say they have traced a pattern of credit card fraud that suggests hackers have compromised point-of-sale registers in gift shops and restaurants at a large number of Hilton Hotel and franchise properties across the United States. Hilton says it is investigating the claims.
...
ources at five different banks say they have now determined that the common point-of-purchase for cards included in that alert had only one commonality: They were all were used at Hilton properties, including the company’s flagship Hilton locations as well as Embassy Suites, Doubletree, Hampton Inn and Suites, and the upscale Waldorf Astoria Hotels & Resorts.
In a written statement, a Hilton spokesperson said the company is investigating the breach claims.
...
As with other recent card breaches at major hotel chains — including Mandarin Oriental and White Lodging properties — the breach does not appear to be related to the guest reservation systems at the affected locations. Rather, sources say the fraud seems to stem from compromised point-of-sale devices inside of franchised restaurants, coffee bars and gift shops within Hilton properties.
It remains unclear how many Hilton properties may be affected by this apparent breach. Several sources in the financial industry told KrebsOnSecurity that the incident may date back to November 2014, and may still be ongoing.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
POS terminals that are often left unattended in hotels...Isgrimnur wrote:Hilton
Rather, sources say the fraud seems to stem from compromised point-of-sale devices inside of franchised restaurants, coffee bars and gift shops within Hilton properties.
Cash, baby, cash.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
If you're traveling to Mexico, I would recommend reading Krebs' three part series on compromised ATMs.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
I only use bank branch housed ATMs. I figure if they get compromised nothing is really safe.
When I go out of the country I usually take cash and use tellers if necessary. I may have used an ATM in Iceland. Of course I have no idea how it works in Mexico. I imagine if I every find myself down there I'll have to come up with a plan. Step one would probably be "Figure out what the heck I'm doing in Mexico."
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Finally, many readers have asked if any of the skimmed ATMs I found in Mexico were bank-owned and operated ATMs, or machines on the premises of bank properties. None of them were: All were free-standing cash machines owned and operated by private companies.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
Well, there you go. So I guess my curmudgeon system system would work in Mexico too.Isgrimnur wrote:Finally, many readers have asked if any of the skimmed ATMs I found in Mexico were bank-owned and operated ATMs, or machines on the premises of bank properties. None of them were: All were free-standing cash machines owned and operated by private companies.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
For now. In his sample size. Not every bank administers their own ATM networks. Mine recently changed from one provider to another. But at the moment, it would seem to be the safer way to go.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
Total aside, but you know how some ATMs have a headphone jack for visually impaired users? Or they did, not sure if they still do. Anyway, I was at a bank branch and had my headphones on so just out of curiosity, I plugged into the ATM to see how it worked. Security was on me in about 45 seconds asking what I was doing. They accepted my explanation and I was impressed. Granted, this was a huge branch on Michigan Ave but still, impressive.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Pyperkub
- Posts: 23823
- Joined: Mon Dec 13, 2004 5:07 pm
- Location: NC- that's Northern California
Re: The Data Breach Thread
Trump Hotels:
Hackers snuck a computer virus into Trump hotels across the United States and Canada, potentially stealing customer credit card data for an entire year.
The Trump Hotel Collection recently acknowledged the computer infection on its website.
Apparently, hackers managed to hide inside the company's computers for a long time. The hotel chain warned that anyone who visited a Trump hotel between May 19, 2014 and June 2, 2015 "may have been affected."
Black Lives definitely Matter Lorini!
Also: There are three ways to not tell the truth: lies, damned lies, and statistics.
Also: There are three ways to not tell the truth: lies, damned lies, and statistics.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Experian; T-Mobile
A massive data breach at Experian, one of the country's major credit rating bureaus that companies use to conduct credit checks, has exposed the personal information of as many as 15 million T-Mobile customers, according to the mobile carrier.
...
While Experian handles the personal information of many Americans, the bureau said the hack, which was discovered on Sept. 15, is only limited to T-Mobile customers. Here's what you need to know.
Who Is Affected
Experian said the incident is "isolated" and is only limited to consumers who applied for T-Mobile USA services between Sept. 1, 2013, and Sept. 16, 2015.
What's Been Exposed
The information exposed to hackers includes names, addresses, social security numbers, date of birth, and various identification numbers, including a passport, driver's license or military identification number, according to Experian.
It's almost as if people are the problem.
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
That's some juicy data right there. And a huge fail by Experian. Isn't that who you go to for monitoring when your data gets compromised?
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
I'm sure Equifax and TransUnion are throwing parties.
It's almost as if people are the problem.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
ScottTrade
Discount broker Scottrade said on Friday that it believes it was the victim of a cyber attack from late 2013 to early 2014 that targeted client names and addresses.
The firm said in a posting on its website it was notifying an estimated 4.6 million clients of the breach and offering them identity protection services.
It's almost as if people are the problem.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
Krebs
In an email sent today to customers, St. Louis-based Scottrade said it recently heard from federal law enforcement officials about crimes involving the theft of information from Scottrade and other financial services companies.
...
The notice said that although Social Security numbers, email addresses and other sensitive data were contained in the system accessed, “it appears that contact information was the focus of the incident.” The company said the unauthorized access appears to have occurred over a period between late 2013 and early 2014.
Asked about the context of the notification from federal law enforcement officials, Scottrade spokesperson Shea Leordeanu said the company couldn’t comment on the incident much more than the information included in its Web site notice about the attack. But she did say that Scottrade learned about the data theft from the FBI, and that the company is working with agents from FBI field offices in Atlanta and New York. FBI officials could not be immediately reached for comment.
It's almost as if people are the problem.
- Pyperkub
- Posts: 23823
- Joined: Mon Dec 13, 2004 5:07 pm
- Location: NC- that's Northern California
Re: The Data Breach Thread
it's the third time in a year and a halfIsgrimnur wrote:I'm sure Equifax and TransUnion are throwing parties.
Black Lives definitely Matter Lorini!
Also: There are three ways to not tell the truth: lies, damned lies, and statistics.
Also: There are three ways to not tell the truth: lies, damned lies, and statistics.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
DeetsPyperkub wrote:Trump Hotels:
Hackers snuck a computer virus into Trump hotels across the United States and Canada, potentially stealing customer credit card data for an entire year.
The Trump Hotel Collection recently acknowledged the computer infection on its website.
Apparently, hackers managed to hide inside the company's computers for a long time. The hotel chain warned that anyone who visited a Trump hotel between May 19, 2014 and June 2, 2015 "may have been affected."
The Trump advisory named the individual properties that were hit with the card-stealing malware, including Trump SoHo New York, Trump National Doral, Trump International New York, Trump International Chicago, Trump International Waikiki, Trump International Hotel & Tower Las Vegas, and Trump International Toronto. The hotel collection said transactions on the point-of-sale terminals at the Las Vegas and Waikiki properties may also have been intercepted by card thieves.
This tracks almost exactly what I heard from banks in June of this year, who told me they had little doubt that Trump properties in several U.S. locations — including Chicago, Honolulu, Las Vegas, Los Angeles, Miami, and New York — were dealing with a card breach that appeared to extend back to at least February 2015. Turns out, it was quite a bit longer than that.
It's almost as if people are the problem.
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
The date passed with nary a peep. Even I forgot.Isgrimnur wrote:Timeline
If the card loss isn't your fault, you still have the current protections in place.October 1, 2015 – Liability will shift to acquirers for domestic and cross-border counterfeit fraud card-present POS transactions if the merchant does not have an EMV-enabled POS device.
Krebs
Effective October 1, 2015, U.S.-based merchants that have not yet installed card readers which accept more secure chip-based cards assume responsibility for the cost of fraud from counterfeit cards. While most experts believe it may be years after that deadline before most merchants have switched entirely to chip-based card readers (and many U.S. banks are only now thinking about issuing chip-based cards to customers) cyber thieves no doubt well understand they won’t have this enormously profitable cash cow around much longer, and they’re busy milking it for all it’s worth.
It's almost as if people are the problem.
- stessier
- Posts: 29923
- Joined: Tue Dec 21, 2004 12:30 pm
- Location: SC
Re: The Data Breach Thread
Just got this today. It ain't short, hence the spoiler tags.Isgrimnur wrote:ScottTrade
Discount broker Scottrade said on Friday that it believes it was the victim of a cyber attack from late 2013 to early 2014 that targeted client names and addresses.
The firm said in a posting on its website it was notifying an estimated 4.6 million clients of the breach and offering them identity protection services.
Spoiler:
I require a reminder as to why raining arcane destruction is not an appropriate response to all of life's indignities. - Vaarsuvius
Global Steam Wishmaslist Tracking
Global Steam Wishmaslist Tracking
Running__ | __2014: 1300.55 miles__ | __2015: 2036.13 miles__ | __2016: 1012.75 miles__ | __2017: 1105.82 miles__ | __2018: 1318.91 miles | __2019: 2000.00 miles |
- Moliere
- Posts: 12380
- Joined: Sun Sep 03, 2006 10:57 am
- Location: Walking through a desert land
Re: The Data Breach Thread
Dow Jones
Dow Jones & Co. disclosed that hackers had gained unauthorized entry to its systems, accessing contact information for current and former subscribers in order to send fraudulent solicitations.
The data breach potentially accessed payment card information for fewer than 3,500 individuals, said Dow Jones, a unit of News Corp and owner of The Wall Street Journal, MarketWatch and Barron’s. The goal of the hack seems to have been to obtain contact information, Dow Jones said.
"The world is suffering more today from the good people who want to mind other men's business than it is from the bad people who are willing to let everybody look after their own individual affairs." - Clarence Darrow
- LawBeefaroni
- Forum Moderator
- Posts: 55466
- Joined: Fri Oct 15, 2004 3:08 pm
- Location: Urbs in Horto, outrageous taxes on everything
Re: The Data Breach Thread
I got a new Target card in the mail. No magnetic strip or signature space on the back. It has a chip and requires a PIN to use.
Only my second chipped card.
Only my second chipped card.
" Hey OP, listen to my advice alright." -Tha General
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
"No scientific discovery is named after its original discoverer." -Stigler's Law of Eponymy, discovered by Robert K. Merton
MYT
- Isgrimnur
- Posts: 82831
- Joined: Sun Oct 15, 2006 12:29 am
- Location: Chookity pok
- Contact:
Re: The Data Breach Thread
America's Thrift Stores
Another charity store chain has been hacked: America’s Thrift Stores, an organization that operates donations-based thrift stores throughout the southeast United States, said this week that it recently learned it was the victim of a malware-driven security breach that targeted software used by a third-party service provider.
“This breach allowed criminals from Eastern Europe unauthorized access to some payment card numbers,” the company’s CEO said in a statement. “This virus/malware, is one of several infecting retailers across North America.”
...
“The U.S. Secret Service tells us that only card numbers and expiration dates were stolen. They do not believe any customer names, phone numbers, addresses or email addresses were compromised. This breach may have affected sales transactions between September 1, 2015 and September 27, 2015. If you used your credit or debit card during this time to purchase an item at any America’s Thrift Store location, the payment card number information on your card may have been compromised.”
...
The company is headquartered in Birmingham, Alabama and operates stores in Alabama, Georgia, Tennessee, Mississippi and Louisiana. According to the company’s site, the organization employs over 1,000 employees and pays over $4 million to its non- profit partners annually, as it turns donated items into revenue for their missions.
It's almost as if people are the problem.