twitter facebook rss

HSBC Turkey loses 2.7m card details; but won’t reissue

Posted by Kevin on November 15, 2014

HSBC Turkey revealed last week that 2.7 million customer card details had been compromised. In a statement HSBC claimed to have detected the compromise itself via its own internal controls within a few days of it occurring. Trey Ford, global security strategist at Rapid7 comments, “This is impressive given that the vast majority of breaches […]

ICO imposes fine on Think W3 Ltd

Posted by Kevin on July 29, 2014

If I had a bunch of active credit card numbers whose loss had not been disclosed, I might be able to sell them on the black market for up to $20 each (see Juniper Networks). For a quick sale, I might offer a 50% discount on this price. So if I had 430,599 such cards, […]

The PF Chang’s breach and the lessons we should learn

Posted by Kevin on June 12, 2014

Brian Krebs reported Tuesday that fresh credit card details are being offered for sale on the internet. When he approached several banks over the details he found a common denominator: “all had been used at P.F. Chang’s locations between the beginning of March 2014 and May 19, 2014.” Contacted about the banks’ claims, the Scottsdale, […]