Payments News

On The Web

nbsp;

Risk & Fraud

Mastercard Alerts Privacy Watchdogs After Loyalty Program Leak

“Mastercard Inc.’s European unit formally notified Belgian and German data-protection regulators of a data lapse concerning a loyalty program, officials said on Friday. The Belgian watchdog said in a statement on Friday that the card company alerted it to a “breach” detected on Aug. 19. It said the episode would have affected a “large number” […]
nbsp; nbsp;

Risk & Fraud

Instagram’s Lax Privacy Practices Let a Trusted Partner Track Millions of Users’ Physical Locations, Secretly Save Their Stories, and Flout Its Rules

“A combination of configuration errors and lax oversight by Instagram allowed one of the social network’s vetted advertising partners to misappropriate vast amounts of public user data and create detailed records of users’ physical whereabouts, personal bios, and photos that were intended to vanish after 24 hours. The profiles, which were scraped and stitched together […]
nbsp;

Risk & Fraud

How the Accused Capital One Hacker Stole Reams of Data From the Cloud

“Ms. Thompson was allegedly able to find an opening in Capital One’s systems and exploit a weakness in some misconfigured networks, according to a Wall Street Journal analysis of hundreds of Ms. Thompson’s online messages and interviews with people familiar with the investigation. Security professionals for years have warned about that gap, which the messages […]
nbsp;

Risk & Fraud

Breach at Hy-Vee Supermarket Chain Tied to Sale of 5M+ Stolen Credit, Debit Cards — Krebs on Security

“On Tuesday of this week, one of the more popular underground stores peddling credit and debit card data stolen from hacked merchants announced a blockbuster new sale: More than 5.3 million new accounts belonging to cardholders from 35 U.S. states. Multiple sources now tell KrebsOnSecurity that the card data came from compromised gas pumps, coffee […]
nbsp;

Risk & Fraud

Payment Card Thieves Hack Click2Gov Bill Paying Portals in 8 Cities

“In 2017 and 2018, hackers compromised systems running the Click2Gov self-service bill-payment portal in dozens of cities across the United States, a feat that compromised 300,000 payment cards and generated nearly $2 million of revenue. Now, Click2Gov systems have been hit by a second wave of attacks that’s dumping tens of thousands of records onto […]
nbsp; nbsp; nbsp; nbsp;