Articles about data breach

Crop of doctor with pen and clipboard

Bupa: Rogue staffer stole health insurance holders' personal deets

Healthcare firm Bupa suffered a data breach when an employee of its international health insurance division inappropriately copied and removed some customer information. People who have taken out international health insurance with the company were notified on Wednesday that the data taken includes "names, dates of birth, …
John Leyden, 13 Jul 2017
crashing airplane

Flight Centre leaks fliers' passport details to 'potential suppliers'

Human error at travel company Flight Centre has resulted in a leak of personal information, including data of customers' passports. “Personal information relating to some leisure customers in Australia was accidentally made available to a small number of potential third party suppliers for a short period of time,” a …
Simon Sharwood, 13 Jul 2017

The AA's copped to credit data blurt, but what about car-crash incident response?

UK motoring organisation The AA belatedly admitted late on Friday, July 7th that customer data – including in some cases partial credit card numbers – had been exposed in a recent breach. Security experts gave the confession a frosty response while a specialist IT lawyer said incident response handling of this type would risk …
John Leyden, 10 Jul 2017
A hose leaking water

Canberra reviewing online Medicare lookup after data breach

It looks like the government's figured out how Australians' Medicare numbers were leaking and ending up on a Tor trading site: an insider abusing a login. Lsat week, the existence of “The Medicare Machine” became public after a journalist for The Guardian purchased his own Medicare information from the site for $30 worth of …
Picture of multi-layered sandwich. Photo by Shutterstock

Biometric data stolen from corporate lunch rooms system

A US payment kiosk vendor has been stung by malware scum. Avanti Markets helps employers monetise the lunch-room and get rid of counter-service, going beyond a simple vending machine to cover the whole sandwiches-fruit-drinks-junk-food with one payment system. Last week, as first spotted by Brian Krebs, the company posted …

Hard Rock hotels burgered up by Sabre breach

Two more hotel chains are warning customers they were caught by the breach of Sabre's "SynXis" hotel booking service that emerged earlier this year. Last Thursday, the Hard Rock chain warned that customers of 11 of its properties may have been caught up in the breach. According to Hard Rock's confession, Sabre advised it the …
Car crash

Automobile Association under fire for car-crash handling of data breach

Breakdown and car insurance outfit AA has been scolded for its handling of a data breach that spilled customer email addresses and partial credit card numbers. Data from the AA's online shop leaked online in April due to a server misconfiguration. The whoopsie gave access to backup files about orders for maps, motoring …
John Leyden, 4 Jul 2017

Medicare data leaks, but who was breached?

Medicare numbers in Australia became a lot less useful as a proof-of-identity, with the Australian Federal Police investigating how an unknown number of records ended up for sale on a Tor site. The report first surfaced via The Guardian's Australian site, with journalist Paul Farrell reporting he purchased his own record for …
Bates Motel

Whoa, bad trip, man: Google workers' info exposed during travel-booking software hack

Google says some employees may have had their personal information exposed after the software system that handles its company travel bookings got hacked. The Mountain View ads broker said in a form letter [PDF] sent to employees – and the state of California – that information including names, contact details and payment card …
Shaun Nichols, 30 Jun 2017

Anthem to shell out $115m in largest-ever data theft settlement

Health insurer Anthem has today agreed to pay $115m to settle a class-action suit brought on by its 2015 cyber-theft of 78.8 million records. The settlement fund will be used to cover damage costs incurred by people who had personal information including their names, dates of birth, addresses, and medical ID numbers stolen …
Shaun Nichols, 24 Jun 2017
Batman. Credit: DC Comics.

Breach at UK.gov's Cyber Essentials scheme exposes users to phishing attacks

Updated The operation behind the UK government's Cyber Essentials scheme has suffered a breach exposing the email addresses of registered consultancies, it told them today. The scheme's badges are required by suppliers bidding for "certain sensitive and personal information-handling [government] contracts". Companies were notified of …
John Leyden, 21 Jun 2017
Failure

US voter info stored on wide-open cloud box, thanks to bungling Republican contractor

A massive cloud-hosted database containing personal information on nearly 200 million people in America was left wide open by consultants hired by the US Republican National Committee, it is claimed. Security firm UpGuard said the records of 198 million US voters, including dates of birth, addresses and phone numbers, were …
Shaun Nichols, 19 Jun 2017
email

Brit uni blabs students' confidential information to 298 undergrads

The University of East Anglia has sent almost 300 undergraduates an email detailing other students' extenuating circumstances. The information was in an Excel spreadsheet attached to an email that ended up being sent to every undergraduates enrolled at the American Studies school through an email-all address. It included 42 …
Rebecca Hill, 19 Jun 2017
An angry man gesticulates at his laptop screen. Photo by Shutterstock

ICO fines Morrisons for emailing customers who didn't want to be emailed

Supermarket chain Morrisons has been fined £10,500 by the UK's data protection watchdog for sending marketing emails to people who had unsubscribed from marketing bumf. The Information Commissioner's Office (ICO) said the company had broken the law when it deliberately sent more than 200,000 emails to people who had previously …
Rebecca Hill, 16 Jun 2017

20 Apple China staff collared for allegedly flogging customers' info

Twenty Apple employees in China have been arrested by cops investigating the lifting and reselling hundreds of thousands of pieces of customers' personal information. According to the South China Morning Post, police in four provinces have cuffed 22 people in total who are believed to be behind a fraud ring that made roughly $ …
Shaun Nichols, 8 Jun 2017

UK trigger-happy over fines for data breaches compared with Europe

The UK is among the most fined nations in Europe for data protection breaches, doubling the amount of penalties to £3.2m (€3.6m) during 2016. According to an analysis by mega consultancy firm PwC, breaches of UK data protection laws last year were followed by 35 fines. It found that the UK Information Commissioner's Office ( …
Kat Hall, 1 Jun 2017

Healthcare tops UK data breach chart – but it's not what you're thinking

The UK health sector accounts for nearly half (43 per cent) of all data breaches, according to new research. A study of figures from the Information Commissioner's Office (ICO) by data security firm Egress found that human error, rather than external threats, was the main cause of breaches across every sector of the UK economy …
John Leyden, 1 Jun 2017
A Chipotle store

Chipotle: Hackers did to our registers what our burritos did to your colon

Fast-food chain Chipotle says hackers infected its point of sale terminals to gain access to card data from stores in 47 states and Washington, DC. The self-described "Mexican Grill" says that the malware was active earlier this year from March 24 to April 18, when it was detected, triggering the company to issue an alert. " …
Shaun Nichols, 26 May 2017

Create a news alert about data breach, or find more stories about data breach.

Biting the hand that feeds IT © 1998–2017