Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Credit to Author: BrianKrebs| Date: Thu, 06 Aug 2020 19:56:59 +0000

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S. consumer data broker, KrebsOnSecurity has learned.

Read more

Robocall Legal Advocate Leaks Customer Data

Credit to Author: BrianKrebs| Date: Mon, 03 Aug 2020 22:18:02 +0000

A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go after telemarketers.

Read more

Here’s Why Credit Card Fraud is Still a Thing

Credit to Author: BrianKrebs| Date: Wed, 29 Jul 2020 19:46:03 +0000

Most of the civilized world years ago shifted to requiring computer chips in payment cards that make it far more expensive and difficult for thieves to clone and use them for fraud. One notable exception is the United States, which is still lurching toward this goal. Here’s a look at the havoc that lag has wrought, as seen through the purchasing patterns at one of the underground’s biggest stolen card shops that was hacked last year.

Read more

NY Charges First American Financial for Massive Data Leak

Credit to Author: BrianKrebs| Date: Thu, 23 Jul 2020 16:12:14 +0000

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties.

Read more

COVID-19 ‘Breach Bubble’ Waiting to Pop?

Credit to Author: BrianKrebs| Date: Tue, 30 Jun 2020 15:00:48 +0000

The COVID-19 pandemic has made it harder for banks to trace the source of payment card data stolen from smaller, hacked online merchants. On the plus side, months of quarantine have massively decreased demand for account information that thieves buy and use to create physical counterfeit credit cards. But fraud experts say recent developments suggest both trends are about to change — and likely for the worse.

Read more

‘BlueLeaks’ Exposes Files from Hundreds of Police Departments

Credit to Author: BrianKrebs| Date: Mon, 22 Jun 2020 04:33:21 +0000

Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week. The collection, dubbed “BlueLeaks” and made searchable via a new website by the same name, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement data-sharing portals online.

Read more

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

Credit to Author: BrianKrebs| Date: Thu, 18 Jun 2020 22:07:37 +0000

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.

Read more

When Security Takes a Backseat to Productivity

Credit to Author: BrianKrebs| Date: Wed, 17 Jun 2020 23:37:52 +0000

“We must care as much about securing our systems as we care about running them if we are to make the necessary revolutionary change.” -CIA’s Wikileaks Task Force. So ends a key section of a report the U.S. Central Intelligence Agency produced in the wake of a mammoth data breach in 2016 that led to Wikileaks publishing thousands of classified documents stolen from the agency’s offensive cyber operations division. The analysis highlights a shocking series of security failures at one of the world’s most secretive organizations, but the underlying weaknesses that gave rise to the breach also unfortunately are all too common in many organizations today.

Read more