We can understand why people continued to shop at retailers that have been hit by data breaches. You still need to buy groceries, clothing, housewares, etc. But what about a website whose main selling point is privacy? Even though AshleyMadison.com — the dating website for cheaters — has been publicly embarrassed by the posting of millions of users’ personal data, it claims that people are still signing up… and that they’re not all just dudes. [More]
If a consumer-facing company, like say a massive hotel chain, touts its dedication to the security of customer information and then does something to repeatedly put that information at risk — like storing unencrypted credit card data on barely secure networks — can they be forced to share some of the blame when hundreds of thousands of credit card numbers are stolen? The hotel chain says that would be blaming the victim, but a federal appeals court has affirmed the Federal Trade Commission’s authority to go after businesses that fail to live up to their security promises. [More]
Cheating Website AshleyMadison.com Reportedly Made Nearly $2M/Year From Users Trying To Delete Accounts
One of the reasons that hackers first attacked AshleyMadison.com, the dating site for people looking to cheat, is because it charges upwards of $20 to users for a “Full Delete” service that scrubs their accounts and photos from the site; something it could just do without charging. Just how many people paid for this? Enough for the website to make nearly $2 million a year. [More]
Following a string of high-profile data breaches last year, Visa and MasterCard handed down a requirement that all merchants transition to the more secure chip-enabled credit card payment system by October of this year. While several major retailers have already made or are in the process of making the switch, a new report finds that many small business owners don’t even know about the deadline – or the potentially costly consequence of not meeting it. [More]
To be honest, we had no idea that you could buy Hanes underwear (and socks, shirts, etc) from the Hanes website, mostly because we’d never really thought to look at the Hanes website. But if you have been shopping at Hanes.com — and potentially at other sites in the Hanes Brands catalog — some of your information may have been compromised. [More]
After a group of hackers posted a sampling of user data stolen from AshleyMadison.com, the parent company of the dating site for cheaters says it’s secured all customer information that was allegedly leaked.
Remember when it was announced that more than four million federal employees in the country were part of a massive data breach last month? Well, turns out that was just one of two rather large data breaches to hit the Office of Personnel Management, with the newly announced second, larger hack affecting upwards of 21 million current and former employees, as well as prospective employees, their families and others who applied for federal background investigations in the last 15 years. [More]
There are millions of federal employees in the country, and not just in Washington, DC. The government is a big bureaucracy and a big employer — and that makes it a nice, juicy target for a big data breach.
If it feels like we hear a whole lot of stories about retail data breaches here in the U.S., well, that’s because we do. Americans are super duper popular targets for card hacks and fraud, and it’s for one simple reason: our credit card security is bad and should feel bad.
The aftermath of a now all-too-common data breach can be frustrating for consumers: canceling credit cards, monitoring credit reports for irregularities, and working with banks to recoup unauthorized purchases. But the hacks can also be expensive for the targeted company, with the average cost now sitting at a 10-year high of $3.8 million. [More]
AdultFriendFinder.com is one of the largest online dating sites out there and now it’s suffered a hack attack that’s exposed a hefty portion of its 64 million members: According to a new report, the data of up to four million users of the hookup site has been exposed.
You may now be able to change your thermostat from another continent, your fridge might know when you need to buy more eggs, and your connected TV recommends shows and movies. But is your data being used for things other than keeping your house warm, your eggs in stock, and your kids entertained — and, just as importantly — is it secure? [More]
New Visa Feature Uses Smartphone Location Tracker To Prevent Fraud By Knowing Where You Are At All Times
Forgetting to tell your bank that you’ll be traveling far outside of your normal spending zone can often lead to frustrations like having transactions rejected out of concern that your card is being used fraudulently. In an attempt to make the lives of frequent travelers easier – and prevent fraud – Visa plans to launch a new service this spring that automatically informs banks where you are. [More]
Days after TurboTax resumed e-filing of all state tax returns following a third-party security expert’s finding that fraudulent activity reported by state tax officials did not result from a breach of Intuit’s own systems, federal regulators announced they would take a look for themselves. [More]
2014 has been a year of point-of-sale data breaches, so why should the last day of the year be any different? Chick-Fil-A is the newest member of the Possible Breach Club, and is currently investigating reports of fraudulent transactions on customer credit cards. The reported breach would have started on December 2, 2013 and lasted until September 30, 2014. [More]
Back in October, big-box office-supply retailer Staples announced that it was investigating a possible customer payment data breach. The results of that investigation are in: yes, the payment systems of some Staples stores were breached. [More]
Last week, a federal court in Minnesota gave the go-ahead to a lawsuit filed against Target by several banks trying to claim damages from the massive 2013 payment systems breach. Now, some worry that the court’s decision could lead retailers to go with simpler, perhaps less secure, systems rather than risk missing a red flag on a more complicated one. [More]