Breaches
From the Web
Judge dismisses shareholder lawsuit against Heartland (updated)
December 09, 2009 from: Office of Inadequate Security
A U.S. District Court judge in New Jersey has tossed out a class-action lawsuit filed by shareholders against Heartland Payment Systems, the credit card processor announced Wednesday.The judge granted Heartland’s motion to dismiss the action, which was filed in the wake of Heartland’s massive breach that was reported earlier this year, according to a company statement. No reason wa...
Comments (0)
From the Web
Gonzalez to plead guilty in NJ
December 08, 2009 from: Office of Inadequate Security
An admitted computer hacker charged in the nation’s largest-ever data breach has told federal prosecutors in New Jersey that he plans to plead guilty in connection to the alleged theft of more than 130 million credit card numbers.
Comments (0)
From the Web
The Merchants Strike Back?
December 07, 2009 from: Office of Inadequate Security
With the recent news of several restaurants teaming up to sue point-of-sale system provider Radiant Systems (a copy of the complaint can be found here) for failing to comply with the PCI Standard, it appears that some merchants may be in a mood to strike back in the aftermath of a payment card security breach. This lawsuit comes in the wake of a couple lawsuits against payment card security assess...
Comments (0)
From the Web
NC: Kids’ Social Security numbers on school postcards
December 05, 2009 from: Office of Inadequate Security
The Wake County [North Carolina] school system accidentally sent out about 5,000 postcards with students’ Social Security numbers printed on the front, a mistake that angered parents and will cost the district nearly $100,000 to remedy.
Comments (0)
From the Web
Malware rebounds as cause of data loss
December 04, 2009 from: Office of Inadequate Security
The 2009 CSI Computer Crime and Security survey identified a number of shifts in significant cybersecurity threats this year. Malware infections jumped to 64% from 50%, reversing a dip in the number of companies experiencing malware infections that started in 2005. That year, the figure was 74%.
Comments (0)
From the Web
Many More Government Records Compromised in 2009 than Year Ago, Report Claims
December 03, 2009 from: Office of Inadequate Security
If you’re bummed about the data in your department that just got breached, you have some cold comfort. Although the combined number of reported data breaches in the government and the military has dropped in 2009 compared to last year, many more records were compromised in those breaches, according to recent figures compiled by a California nonprofit.
Comments (0)
From the Web
Risky business: Remote Desktop opened the door for Aloha hackers
November 25, 2009 from: Office of Inadequate Security
When nine restaurants in Louisiana and Mississippi filed lawsuits against Radiant Systems and its Louisiana distributor, they may have represented only the tip of a substantial iceberg of hacks affecting restaurants that used Radiant Systems’ Aloha POS system. It seems that the scope of the problem is first coming to the public’s attention approximately one and a half years after...
Comments (0)
From the Web
The Year Of The Mega Data Breach
November 24, 2009 from: Office of Inadequate Security
According to the Identity Theft Resource Center, government agencies and businesses reported 435 breaches as of Nov. 17, on track to show a 50% drop from the number of breaches reported in 2008. That would make 2009 the first year that the number of reported data breaches has dropped since 2005, when the ITRC started counting.
Comments (2)
From the Web
Forty-one percent of workers have stolen corporate data – survey
November 23, 2009 from: Office of Inadequate Security
Stealing employer data has become endemic in our culture. According to a survey conducted with 300 office workers in New York City examining the impact of the recession on ethics and security, 85 percent of the respondents admitted to knowing that downloading corporate information from their employer was illegal, yet a quarter of those surveyed would take the data regardless of the penalties.
Comments (0)
From the Web
TX: Former VP of First Service CU convicted for bank fraud, ID theft
November 20, 2009 from: Office of Inadequate Security
A former Senior Vice President of Area Operations for First Service Credit Union in Houston has pleaded guilty to embezzling more than $30,000 from his former employer, United States Attorney Tim Johnson announced today.
Comments (0)
From the Web
Massive card processor breach in Spain affecting Europeans
November 18, 2009 from: Office of Inadequate Security
Back in October, this site reported that “tens of thousands” of Swedish banking customers and “tens of thousands” of Finnish banking customers had been affected by a breach in Spain that might involve a card payment processor.
Comments (0)
From the Web
Update: Stolen BCBS hard drives had data on 2 million insured
November 16, 2009 from: Office of Inadequate Security
One of Tennessee’s largest holders of personal information confirms that an October theft from a Chattanooga office affects about 2 million of its clients. Blue Cross Blue Shield said 68 computer hard drives that contained Social Security numbers and other sensitive information were taken from the office.
Comments (0)
From the Web
Senate Panel Clears Data Breach Bills
November 05, 2009 from: Office of Inadequate Security
The Senate Judiciary Committee Thursday approved two companion bills that would require businesses and government agencies to notify individuals of security breaches involving sensitive personally identifiable information. Both bills go to the Senate for consideration.
Comments (0)
From the Web
MA: Williams College laptop stolen; 750 notified
November 05, 2009 from: Office of Inadequate Security
Williams College in Williamstown reports a recent laptop theft. The laptop, which was stolen when an employee left it in a parked car in Boston on October 3, contained the names and Social Security numbers of 750 individuals from 39 states and several foreign countries.
Comments (0)
From the Web
Heartland Payment Systems Reports Third Quarter Financial Results
November 03, 2009 from: Office of Inadequate Security
Heartland Payment Systems, Inc. announced a GAAP net loss of $13.6 million or ($0.36) per share for the three months ended September 30, 2009. Results for the quarter are after $35.6 million (pre-tax), or $0.59 per share, of various expenses, accruals and reserves, all of which are attributable to the processing system intrusion, including charges related to settlement offers made by the Company i...
Comments (0)
From the Web
Man charged with developing and distributing cable network hacking tools
November 02, 2009 from: Office of Inadequate Security
Charges were unsealed in federal court in Massachusetts against an Oregon man and the company he founded, TCNISO, alleging that they developed and distributed products that allowed users to modify their cable modems and obtain internet access without paying for it.
Comments (0)
- Over-Sharing Riskier than Government Snooping
- 20 Critical Security Controls: Control 13 – Boundary Defense
- Redefining Social Networking
- Creating Your Own Privacy & ROI
- Security Intelligence for the Enterprise - Part 1
- Why are Cybercrimes NOT Always White-collar Crimes?
- From the SMB to Security Guru: Five Ways IT Pros Can Manage Security on a Budget
- Balancing Act Between Privacy and Security
- The NSA’s Word Games Explained: How the Government Deceived Congress in the Debate over Surveillance Powers
- NSA Surveillance Is Legal And Not Targeting Average Americans, Says Texas A&M Professor