If it’s a day that ends in Y, someone who shouldn’t have access to a system is trying to get access to that system. Unfortunately, today there’s news in the air of two big successes for the bad guys. One has hit 1.7 million web browser users; the other, at least 200,000 registered voters.
Remember the guy who was accused of hacking into United Airlines system so he could steal a bunch of travel vouchers and then sell them for a profit? He’s just pleaded guilty. [More]
Okay, okay, we know what you’re thinking: “Myspace?” you scoff, “It’s 2016! I haven’t had a Myspace account since I was a kid! My gosh, what’s next, CompuServe?”
As compared to the flood of the last couple of years, the number of hacks and data breaches facing consumers this holiday season is but a mere trickle. But while the pace may be slowing, shoppers’ card data is, as ever, at risk. The latest large-scale victim? A restaurant conglomerate with over 500 locations.
After a data breach at popular kids’ toy maker VTech that put the personal information of nearly five million parents and children at risk, as well as reportedly exposing many of their photos and chat logs, the Hong Kong-based company says it’s bringing in the pros to help shore up its security.
Hilton Looking Into Possible Hack Attack Affecting Guests Using Credit Cards At Its Restaurants, Gift Shops
Hilton Hotels says it’s looking into a possible hack attack connected to point-of-sale registers and a variety of Hilton properties. If you bought something at a restaurant, gift shop or other store at a Hilton property recently, you should take a closer look at your credit card statements for any fraudulent activity.
Federal investigators underestimated the number of fingerprints stolen in a massive breach of the Office of Personnel Management earlier this year: the agency announced Wednesday that 5.6 million individuals’ finger prints were stolen, nearly five times the original estimate of 1.1 million compromised prints. [More]
If you’re not up to date on all your reality TV star news, perhaps you aren’t aware that the Kardashian/Jenner sisters recently launched new mobile apps and redesigned websites to stay even more connected with their adoring hordes than before. But while the family’s popularity has seen hundreds of thousands of people signing up for those sites, a new report says the personal information for many of those subscribers was available — albeit briefly — to anyone with the know-how to get it.
For at least the fourth time this year, millions of consumers are being faced with some bad news: health insurer Excellus Blue Cross Blue Shield has announced the discovery of a major data breach in their systems. Over 10 million subscribers to Excellus and their partner services now have their most personal information — including medical claims records and social security numbers — stolen. [More]
The implacable march of technology has, in many ways, made parents’ lives easier. But in other areas, it’s added a whole new layer of complication. Like the fact that video-enabled baby monitors, designed to let parents have peace of mind while their kids are sleeping in another room, almost universally have completely crap security that any random stranger on the internet can tap into.
If your credit card information gets stolen in a data breach, there are certain rules in place that limit your liability and protect you from fraud. But if a hack makes personal, potentially very embarrassing, information public — as in, say, the Ashley Madison hack — there’s not much anyone can do to stop others from seeing or writing about it.
While big companies have been known to offer “bounties” to white-hat hackers to test for weaknesses in their networks and websites to ensure they aren’t one day breached in a cyber attack, it’s too late for AshleyMadison.com, the dating site for cheaters. After the embarrassment of having its users’ private information made very public, the site is now dangling several hundred thousand dollars as a reward for information leading to the arrest of the group behind the massive hack. [More]
Very Personal Information For Over 30 Million Ashley Madison Users Set Loose On Internet In Wake Of Hack
Ashley Madison, the website for cheating cheaters who specifically want to go have an affair, was hacked in July. A day later, the company said that it was working to secure its users’ data and all personally identifiable data had been taken down. But perhaps the company is taking after the worst habits of its member base, because that too turns out to be a pack of dirty lies: the full data for over 30 million Ashley Madison accounts is now out there in the wild.
When a car has a major flaw, like a potentially lethal airbag, it gets recalled. Same for a coffeemaker, or a surfboard, or a prescription drug. But when that major flaw is in a product’s software — like a huge exploit that puts literally a billion consumers’ privacy and personal data at risk — there’s no universal process out there for remedying the situation. Do we need one? And if so, how can we get one? [More]
General Motors gets to join Fiat Chrysler and Tesla in an unenviable lineup this week: Using cheap gadgets and text messages, researchers have proven they can hack that most traditional of cars, the Chevy Corvette. And worse still is that this line of attack will work on basically any car with a computer in it, which is to say… all of them.