Apple / iPhone – 225,000 records exposed – malicious outsider
Malware was discovered in iPhone’s that have been “jailbroken”. This has affected nearly 225,000 iPhones and the login credentials have been comprised. Read more here. This breach actually was announced late last month but we are including in the September blog post since it wasn’t mentioned in our previous post.
Grupo Financiero Banorte – 20,000 records exposed – malicious outsider
Grupo Financiero Banorte is a Mexican banking and financial services holding company with headquarters in Monterrey and Mexico City, Mexico – the third largest in the country. Not much information has been posted about this data breach however Mexico’s National Transparency, Information Access, and Data Protection Institute (INAI) recently announced an impending fine of almost $2 million to be levied against Grupo Financiero Banorte. The bank failed to notify as many as 20,000 clients of a hack that could have impacted their information.
Hilton Hotels – unknown number – malicious outsider
According to KrebsonSecurity, a large number of point-of-sale registers at Hilton Hotels have been comprised. Hilton’s as well as Embassy Suites, Doubletree, Hampton Inn and Suites, and Waldorf Astoria Hotels & Resorts have been comprised. The company released the following statement regarding the incident:
“Hilton Worldwide is strongly committed to protecting our customers’ credit card information. We have many systems in place and work with some of the top experts in the field to address data security. Unfortunately the possibility of fraudulent credit card activity is all too common for every company in today’s marketplace. We take any potential issue very seriously, and we are looking into this matter.”
Oakland Family Services – 16,000 records exposed – malicious outsider
Oakland Family Services is a non-profit health services organization. According to Komando, on July 14, a hacker broke into an employee’s email account and was on their network for over 23 minutes. 16,000 records were compromised and individual’s birth dates, social security numbers, insurance information and more are at risk.