Other breaches and leaks

The rest goes into a list. Hey, we can't all be special.

  • Sotheby's: the auction house reported that one of it's e-commerce portals was infected with a Magecart credit-card stealing script. While only recently discovered, the script itself was on the site at least since March 2017.
  • 1-800-Flowers: the Canadian version of the flower shop reported that credit card data was breached, from as early as August 2014 till September of this year. It's unclear how many customers are impacted.
  • eBay Japan: no personal data leak, thankfully. But a researcher found that they exposed their Git repo, and was able to download the entire code base, including database passwords, logs, and more.
  • Bethesda: the game maker had "an issue" with their support system. Multiple users were able to see support tickets from other players, including sensitive information like name, address and purchase information.
  • National Republican Congressional Committee (NRCC): attackers had access to the e-mail accounts of four senior aides for several months.
Dieter Van der Stock