Breaches

Nearly 600 U.S. businesses compromised by 'Backoff' POS malware

Nearly 600 U.S. businesses compromised by 'Backoff' POS malware

By

Attackers are brute-forcing remote desktop software to infect point-of-sale devices with relatively new malware known as Backoff.

Paddy Power breach impacting 650K customers dates back to 2010

By

Nearly 650,000 Paddy Power customers who made an account prior to 2010 had data compromised in a breach.

Breach index: Encryption used in 4 percent of Q2 incidents

Breach index: Encryption used in 4 percent of Q2 incidents

By

Out of the 237 disclosed data breaches last quarter, encryption was used in only 10 instances.

Programming error results in CVS Caremark mailing blunder

By

About 350 CVS Caremark customers are being notified that a programming error resulted in mailers containing their personal information being sent to the wrong customers.

Seattle University donor checks possibly exposed due to settings error

By

Seattle University is notifying an undisclosed number of donors that anyone with a Seattle University computer account could have viewed scanned checks.

Report: Hackers stole data from Israeli defense firms

By

A report by Brian Krebs detailed the intrusions, which occurred between Oct. 2011 and Aug. 2012.

IG scolds NOAA on security deficiencies, recommends fixes

IG scolds NOAA on security deficiencies, recommends fixes

By

An audit of NOAA by the inspector general found security shortcomings, including the link between information systems and satellite systems.

ICO fines U.K. travel firm £150,000 for 2012 breach

By

Data on more than one million credit and debit cards was pilfered in the 2012 breach of a system Think W3 Limited.

Malware used to compromise payment cards at Wendy's restaurant in Michigan

By

Customers who paid with credit and debit cards at a Wendy's in Michigan may have had their payment card compromised if they used it at the restaurant for about a month prior to July 15.

Report: Japan eyes law requiring security incident reporting

By

Bloomberg says the Japanese government is eyeing cyber security legislation to make companies 'fess up to security incidents impacting users.

Michaels class-action suit tossed after plaintiffs can't show damage

By

A judge ruled that plaintiffs couldn't show monetary damage in suit filed after a breach exposed data on 2.6 million of the retailer's customers.

Former student sentenced to six months for Nebraska university hack

By

Daniel Stratman was a senior at University of Nebraska-Lincoln when he was arrested for hacking into the university's computer system and accessing personal information.

Laptop stolen from Self Regional Healthcare contained patient data

By

As least 500 patients of Self Regional Healthcare have been notified that their personal information was on a laptop stolen from a Self Regional facility.

ECB database hacked, attackers ask for financial compensation

By

European Central Bank discovered the breach when it received an anonymous email requesting money in exchange for the data.

Sony to shell out $15M in PSN breach settlement

Sony to shell out $15M in PSN breach settlement

By

The 2011 hack exposed the personal information of roughly 77 million users registered with PlayStation Network and Qriocity.

IT manager fired following massive Maricopa college district breach

By

Miguel Corzo, the IT manager who was fired on Tuesday, claims Maricopa County Community College District is making him into a scapegoat.

Successful strategies for continuous response

Successful strategies for continuous response

While it isn't realistic for organizations to expect that it will never happen to them, a rapid, professional and continuous response can limit their scope and reputational impact.

Wall Street Journal website vulnerable to SQL injection, gets hacked

By

The Wall Street Journal confirmed on Tuesday that an outside party exploited a vulnerability and hacked into its new graphics systems.

$4 billion breach suit against Sutter Health dismissed

By

The ruling comes nearly three years after a computer theft occurred at the organization.

Goodwill investigates compromise of credit, debit card info

By

Credit card and debit card data may have been compromised at several Goodwill locations around the country.

Vice.com hacked, possibly The Wall Street Journal website too

Vice.com hacked, possibly The Wall Street Journal website too

By

A reported Russian hacker group known as W0rm tweeted on Monday that it had hacked Vice.com and The Wall Street Journal website.

Thousands had data on computers stolen from California medical office

By

Bay Area Pain Medical Associates notified about 2,780 patients that their data was on computers stolen from its California offices.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

U.K. data security office quietly discloses breach

By

The U.K.'s data security watchdog has disclosed a data breach it suffered in the last year.

Australian daily deals site discloses data breach after three years

By

An Australian daily deals website company, Catch of the Day, alerted its users on Friday of a data breach that impacted one of its websites in 2011.

Study: 72 percent of Chicago fraud victims also data breach victims

By

The National Consumer League's findings prompted the state's attorney general to speak about data breaches' implications.

The eBay breach explained

The eBay breach explained

Several security layers need to be monitored 24 hours-a-day, seven days a week to identify intrusion attempts at various stages and to help ward off attackers at all points.

eBay Q2 results up, password reset took toll on user activity

By

While eBay reported healthy financials for the second quarter, CEO Jack Donahoe said the company is still recovering from a post-breach password reset.

Subcontractor breach impacts 1,700 in Dominion Resources employee wellness plan

By

About 1,700 people in the Dominion Resources employee wellness program have been notified that their data was accessed in a breach.

Document posted to California city website, employee data accessed

By

In California, a document posted to the City of Encinitas website contained data on hundreds of current and former city staffers.

Sign up to our newsletters

POLL