Back in July, we shared the news that there was a possible payment data breach at numerous zoo and museum gift shops run by Service Systems Associates, a company that designs and runs cafeterias and gift shops for cultural institutions. The company has finally confirmed the breach and the dates that it happened: if you picked up a stuffed lion between March 24 and May 20 of this year, keep an eye on your credit card bills. [More]
once more unto the breach
Crowdfunding Site Patreon Hacked, 15GB Of Donor Info Dumped Online
By 10.2.15
Patreon, a website that allows donors to give regularly to sites, artists, projects and other creators, yesterday evening that it’d been hit by a hack attack that accessed some registered names, email addresses and mailing addresses. And according to reports, 15GB of data was then dumped online, exposing information about donors and the projects they’ve funded. [More]
Hilton Looking Into Possible Hack Attack Affecting Guests Using Credit Cards At Its Restaurants, Gift Shops
By 9.28.15
Hilton Hotels says it’s looking into a possible hack attack connected to point-of-sale registers and a variety of Hilton properties. If you bought something at a restaurant, gift shop or other store at a Hilton property recently, you should take a closer look at your credit card statements for any fraudulent activity. [More]
Federal Data Breach Included 5.6M Compromised Fingerprints, Five Times The Original Estimate
By 9.23.15
Federal investigators underestimated the number of fingerprints stolen in a massive breach of the Office of Personnel Management earlier this year: the agency announced Wednesday that 5.6 million individuals’ finger prints were stolen, nearly five times the original estimate of 1.1 million compromised prints. [More]
Apple Pulls Malware-Infected Apps After App Store Suffers Its First Major Breach
By 9.21.15
Hackers have finally taken a bite out of Apple’s App Store: the company confirmed that attackers were able to infect some of the apps it offers with malware, by copying and modifying a tool used by software developers. Apple says it has now removed the affected apps from the App Store. [More]
Federal Data Breach Reportedly Affects An Additional 21 Million People
By 7.9.15
Remember when it was announced that more than four million federal employees in the country were part of a massive data breach last month? Well, turns out that was just one of two rather large data breaches to hit the Office of Personnel Management, with the newly announced second, larger hack affecting upwards of 21 million current and former employees, as well as prospective employees, their families and others who applied for federal background investigations in the last 15 years. [More]
4 Million Federal Employees Are The Latest Victims Of A Massive Data Breach
By 6.5.15
There are millions of federal employees in the country, and not just in Washington, DC. The government is a big bureaucracy and a big employer — and that makes it a nice, juicy target for a big data breach. [More]
IRS: Thieves Obtained Information On 100,000 Taxpayers From Transcript System
By 5.26.15
A tax transcript is a document from the IRS that shows key information from tax returns that you’ve already filed, or changes to what you and the government owe each other that may have been made after the return was filed. You can normally order them online, but the system is now closed after the IRS learned that people identified only as “thieves” accessed transcripts for about 100,000 people. [More]
There’s Another Possible Payment Data Breach At Natural Grocers
By 3.3.15
Apparently, natural foods stores are ready to compete with the big grocery chains. No, not on price–Natural Grocers, a small chain of about 93 stores in 15 states that’s based in Colorado has decided to compete with the big chains by possibly having a payment data breach of its very own. This is not the kind of corporate milestone that a growing chain would celebrate. [More]
Park-N-Fly And OneStopParking Confirm Suspected Breaches
By 1.14.15
After looking at the transactions on compromised credit cards, security experts at banks suspected that breaches may have occurred at two airport parking companies: the suspected breaches at Park-N-Fly and OneStopParking. Both companies have since confirmed that they were breached, but that doesn’t mean that the same person or group targeted both companies. [More]
Banks Report Possible Data Breach At Chick-Fil-A Restaurants
By 12.31.14
2014 has been a year of point-of-sale data breaches, so why should the last day of the year be any different? Chick-Fil-A is the newest member of the Possible Breach Club, and is currently investigating reports of fraudulent transactions on customer credit cards. The reported breach would have started on December 2, 2013 and lasted until September 30, 2014. [More]
Another Parking Lot Payment Data Breach At OneStopParking
By 12.30.14
December 2014 really hasn’t been great for offsite airport parking facilities. Earlier this week, we learned about a parking lot hear the airport in Orlando that abruptly closed, stopping shuttles from running and trapping customers’ vehicles inside. A few weeks ago, we learned that Park-N-Fly payment information may have been breached. Now there are reports that another offsite lot operator, OneStopParking, may have been breached by the same gang of card-stealing baddies who were behind last year’s Target breach. [More]
Staples Confirms 1.16 Million Cards Breached In 115 Stores
By 12.22.14
Back in October, big-box office-supply retailer Staples announced that it was investigating a possible customer payment data breach. The results of that investigation are in: yes, the payment systems of some Staples stores were breached. [More]
Banks Report That Park-N-Fly Payment Information May Have Been Breached
By 12.16.14
Park-N-Fly, as you may be able to guess from the name, is a company that provides parking and shuttle services at airports. Customers can make parking reservations and pay online before their flights, which is very convenient. However, the company may have been the latest victim of a payment information breach, according to reports from card-issuing banks. [More]
Report: Payment Information Breaches At Staples And Michaels May Be Linked
By 11.17.14
It’s no longer surprising news when hackers infiltrate the systems of a brick-and-mortar retailer and run off with our credit card numbers. Shoppers have come to expect that kind of thing as a normal part of shopping. However, it’s interesting (and a bit scary) to note that two relatively small breaches at national chains could be linked. [More]
Report: Secret Service Now Investigating Home Depot Breach
By 9.4.14
Nothing scares big-box shoppers and retailers quite like the specter of another nationwide credit-card data breach. Home improvement chain Home Depot has announced that it is investigating a possible data breach of the payment systems in its 2,200 stores, and the blog Krebs on Security analyzed data found in a shady corner of the Internet to show that this is likely what happened. Now Reuters reports that the Secret Service is involved in the matter. [More]
Evidence Shows That Nearly All U.S. Home Depots May Have Been Hit By Data Breach
By 9.3.14
While Home Depot has yet to confirm or deny whether it was indeed hit by a massive breach of its payment system, a look at the data for a huge batch of stolen credit cards that recently went up for sale on the black market seems to indicate that the hack could have hit nearly all Home Depot stores in the U.S. [More]
Possible Mini-Security Breach At California Target Store
By 8.29.14
Back in January, postal inspectors discovered a scheme to duplicate the credit cards of Target customers and rack up purchases on counterfeit cards. No… we don’t mean that Target credit card breach. So far, this appears to be a much smaller breach, though authorities can’t say for sure yet that it’s not at all related to the breach that shook up the retail business and all of our wallets earlier this year. [More]
