pii

(get it in RSS or Atom)

JP Morgan Chase confirms breach, 76 million homes and 7 million businesses affected

JP Morgan confirms breach, 76 million homes and 7 million businesses affected

JP Morgan Chase has confirmed that user information including names, addresses, phone numbers and email addresses for 76 million households and 7 million small businesses has been stolen in one of the largest data breaches ever.

220 million records stolen, 16 arrested in massive South Korean data breach

220 million records stolen in massive South Korean data breach

South Korean authorities have revealed a massive data breach that has affected over half of the country. The stolen records include real names, account names, passwords and resident registration numbers from a number of website registrations across online game and movie ticket sites.

'Half of American adults hacked' in the past year - really?

'Half of American adults hacked' in the past year - really?

A new study publicized this week claims that almost half of all American adults have had their personal data hacked in the past year. Headline-grabbing truth-stretching? Or have 110 million Americans really been hacked?

LifeLock pulls Wallet app, says it wasn't compliant with data security standards

lifelock-logo-250

The controversial identify theft protection company LifeLock says it has pulled down its LifeLock Wallet app over concerns that the app is not compliant with payment card industry standards.

We tell you why LifeLock's woes are less than surprising, and offer some tips to avoid identity theft.

SSCC 132 - More breaches, treacherous gas pumps, poor passwords and Data Privacy Day [PODCAST]

sscc-132-thumb-250

This week's Chet Chat starts out with credit card breaches, covers the issue of whether you really need good passwords everywhere, and ends with an upbeat and encouraging conclusion...

Listen and learn more!

Target's data breach MUCH bigger than first thought - now more than 100,000,000 records

target-shot-250

US megaretailer Target is having a tough time of it.

Having said that, so are its customers - and even, as it now turns out, many of its non-customers, too.

Target has now joined companies like Adobe and Sony in the "hundred million plus" data breach club...

SSCC 121 - WordPress, OS X, iCloud, smartphone tracking and medical devices [PODCAST]

sscc-121-thumb-250

By popular demand, the Chet Chat has gone back to a weekly format, so your favourite security podcast will now be appearing twice as frequently!

Listen to Chet and Duck in the latest episode...

2 years in federal prison for trash-searching student aid fraudster

bars-250

A Florida man will go to prison for defrauding student aid accounts, while his two fellow-conspirators have been given probation and community sentences.

The group's techniques should serve as a reminder that it's not just the information stored on our computers that we need to keep secure.

Copying fingerprints, Firefox trusted, Facebook not, Yahoo recycles - 60 Sec Security [VIDEO]

2013-09-28-60ss-thumb-250

How do you copy fingerprints? Which is the most trustworthy browser? Who will use Facebook for payments? How long does an email address live?

Satisfy your curiosity with this week's 60 Second Security!

US health care company faces giant class action suit for losing over 4,000,000 unencrypted records

nicked-lappie-500

To paraphrase Oscar Wilde: "To lose one patient record may be regarded as a misfortune. To lose 4,000,000 looks like carelessness."

How four stolen computers led to a huge class action lawsuit...

RSPCA has access to confidential police data and no one is checking what it does with it

RSPCA has access to confidential police data and no one is checking what it does with it

UK police routinely pass on personal information they hold, including central criminal records and huge swathes of material held by local forces, to the RSPCA - a non-government body with no official requirement to reveal who it holds data about, what data it holds, how it stores it or for how long.

Apple finally adopts HTTPS for the App Store - here's why it matters

Last year, a Googler named Dr. Elie Bursztein noticed that Apple's App Store protocols were using HTTP where HTTPS would have been much better.

Some time later, Apple has changed its ways.

Paul Ducklin explains why it matters...

Webhosting management company cPanel suffers break-in, lets slip customers' root passwords

cpanel-demo-250

Webhosting management company cPanel recently announced a worrying sort of compromise: the possible theft of its customers' root passwords.

Paul Ducklin looks at what happened, and what's being done to avoid a repeat of this worrying situation...

Indian two-factor authentication fraudsters busted by Delhi cops

Two more alleged cybercrooks are cooling their heels in custody this weekend.

The modern-day bank robbers are said to have run a scam that allowed them to work around the two-factor authentication protection offered by the victims' banks.

US Secret Service probed after sensitive files left on Metro train

US Secret Service probed after sensitive files left on Metro train

A contractor working for the US Secret Service left two tapes full of extremely sensitive data on a Metro train, losing the extremely sensitive, personal data of staff, contact and overseas informants.

NASA suffers major data breach over stolen laptop that wasn't encrypted

NASA suffers major data breach over stolen laptop that wasn't encrypted

The space agency is now, finally, after yet another unencrypted laptop theft, scrambling to require full disk encryption agency-wide.

Should you lie on Facebook? [VIDEO]

Should you lie on Facebook? [VIDEO]

A senior government official has advised users of social networks such as Facebook on how to better protect their privacy.

Don't tell social networks the truth.

FTC files complaint against Wyndham Hotels for not protecting sensitive customer information

FTC files complaint against Wyndham Hotels for not protecting sensitive customer information

Wyndham Hotels is being sued by the US Federal Trade Commission for lax security measures. Will suits like this raise concerns among other organizations that are careless with our personal information?

TechRadar latest site to have usernames and passwords stolen

TechRadar latest site to have usernames and passwords stolen

Tech news site TechRadar is alerting users that their username, password, email address and date of birth have been accessed by hackers.