Recent Comments



    Archive for Identity Theft

    Microsoft reveals hackers accessed some accounts for months

    April 14th, 2019 by

    Microsoft reveals hackers accessed some accounts for months

    “Microsoft has started notifying some users that a hacker was able to access accounts for months earlier this year. The software giant discovered that a support agent’s credentials were compromised for its web mail service, allowing unauthorized access to some accounts between January 1st and March 28th, 2019. Microsoft says the hackers could have viewed account email addresses, folder names, and subject lines of emails, but not the content of emails or attachments.”

    Posted in Identity Theft, Security Breeches | No Comments »

    Yet another breach: Buca di Beppo

    March 30th, 2019 by

    Once more a malware installed on Point of Sale terminals…

    A Month After 2 Million Customer Cards Sold Online, Buca di Beppo Parent Admits Breach

    Posted in Identity Theft, Malware, Security Breeches | No Comments »

    Microsoft: Less Malware… More Phishing

    March 5th, 2019 by

    Microsoft Sees 250% Phishing Increase, Malware Decline by 34%

    “Phishing attacks have seen an impressive 250% increase between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between URLs, domains, and servers when sending e-mails and hosting phishing forms.”

    Posted in Identity Theft, Malware, Phishing | No Comments »

    TurboTax Tax Returns Exposed

    February 23rd, 2019 by

    Tax Returns Exposed in TurboTax Credential Stuffing Attacks

    “Financial software company Intuit discovered that tax return info was accessed by an unauthorized party after an undisclosed number of TurboTax tax preparation software accounts were breached in a credential stuffing attack.”

    Posted in Identity Theft, Security Breeches | No Comments »

    Someone hired a hitman? Not really!

    December 19th, 2018 by

    New Extortion Email Threatens to Send a Hitman Unless You Pay 4K

    “Extortion emails are getting wilder and wilder. First we had sextortion scams that threatened to reveal victims doing dirty deeds on video, then bomb threats, which brought the worlwide attention of law enforcement, and now we have threats that a hitman is targeting the recipient unless they pay $4,000 in bitcoin.”

    Posted in Identity Theft, Phishing | No Comments »

    Links in Instant Messages? Don’t click on them!!!

    December 7th, 2018 by

    Scam alert: Beware hackers stealing Facebook passwords via malicious video links in instant messages

    “Bottom line: Protect both your Facebook account and your computer from hackers by refusing to click on links and videos that show up in your IM inbox out of the blue.”

    Posted in Identity Theft, Malware | No Comments »

    Q&A Site “Quora” exposed 100 Million accounts

    December 5th, 2018 by

    100 Million Quora users affected by massive data breach

    Have you noticed that the latest breeches tend to be 100 Million Plus? Anyway, if you use the site, be sure to change the password and any other sites that are linked (e.g., social networks).

    Quora Security Update

    For approximately 100 million Quora users, the following information may have been compromised:

    • Account information, e.g. name, email address, encrypted password (hashed using bcrypt with a salt that varies for each user), data imported from linked networks when authorized by users
    • Public content and actions, e.g. questions, answers, comments, upvotes
    • Non-public content and actions, e.g. answer requests, downvotes, direct messages (note that a low percentage of Quora users have sent or received such messages)

    Questions and answers that were written anonymously are not affected by this breach as we do not store the identities of people who post anonymous content.

    The overwhelming majority of the content accessed was already public on Quora, but the compromise of account and other private information is serious.

    Posted in Identity Theft, Security Breeches | No Comments »

    Jared & Kay Jewelers left customer data exposed

    December 3rd, 2018 by

    Jared, Kay Jewelers Parent Fixes Data Leak

    “The parent firm of bling retailers Jared and Kay Jewelers has fixed a bug in the Web sites of both companies that exposed the order information for all of their online customers.”

    It apparently does not affect other retailers owned by Signet Jewelers (like Zales and Piercing Pagoda).

    Posted in Identity Theft, Security Breeches | No Comments »

    Starwood Guest Reservation Database Hacked

    November 30th, 2018 by

    Starwood Guest Reservation Database Security Incident

    Posted in Identity Theft, Security Breeches | No Comments »

    USPS: User account information exposed

    November 22nd, 2018 by

    USPS Site Exposed Data on 60 Million Users

    U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at to view account details for some 60 million other users, and in some cases to modify account details on their behalf.”

    Posted in Identity Theft, Security Breeches | No Comments »

    « Previous Entries Next Entries »