SoylentNews is people
SoylentNews
from the data-breaches,-faster-than-the-speed-of-business dept.
Ars Technica reports:
Dozens of UPS stores across 24 states, including California, Georgia, New York, and Nebraska, have been hit by malware designed to suck up credit card details. The UPS Store, Inc., is a subsidiary of UPS, but each store is independently owned and operated as a licensed franchisee.
In an announcement posted Wednesday to its website, UPS said that 51 locations, or around one percent of its 4,470 franchised stores across the country, were found to have been penetrated by a “broad-based malware intrusion.” The company recorded approximately 105,000 transactions at those locations, but does not know the precise number of cardholders affected.
UPS did not say precisely how such data was taken, but given the recent breaches at hundreds of supermarkets nationwide, point-of-sale hacks at Target, and other major retailers, such systems would be a likely attack vector. Earlier this month, a Wisconsin-based security firm also reported that 1.2 billion usernames and passwords had been captured by a Russian criminal group.
(Score: 1, Informative) by Anonymous Coward on Thursday August 21 2014, @05:29PM
FYI UPS bought Mailboxes Etc and eventually renamed them to be UPS stores. They are franchaised.
I use one for a private mailbox, I'd prefer to use another company because I use a private mailbox to stay under the radar but being in their computer means I'm in UPS's computers and who knows what they do with that info. But in my town there aren't any other private mailbox providers. I pay cash, but because of postal regulations they have my driver's license on file and I think they typed the info into their computer...
(Score: 2) by MrGuy on Thursday August 21 2014, @06:32PM
Cool story, bragh.
(Score: 0) by Anonymous Coward on Thursday August 21 2014, @07:06PM
It is spelled "brah" - it is hawaiian, not irish.
(Score: 0) by Anonymous Coward on Thursday August 21 2014, @07:19PM
Receiving a lot of stuff from Silk Road, eh?
(Score: 0) by Anonymous Coward on Thursday August 21 2014, @07:23PM
That's what J.J. Luna suggests using for ID in his "How To Be Invisible" books but after 2001-09-11, stuff might have changed around and a passport can't be used that way anymore. If that is the case, you'll have to mail stuff 13 ounces or less anonymously through the USPS or else get someone you trust to 'proxymail' it for you and you can do the same in return for them to return the favor.
Seriously, as long as the IRS can track the money flows accurately for income tax purposes why track who mails letters/packages over 13 ounces?
Once some crazy person somewhere in the world perfects a true exploding 'letter bomb' of 1 ounce or less (they just might be working on this right now! o_O; ) then what? This surveillance system will be effectively DDoS'ed as EVERYONE in the USA is required to identify themselves when they mail stuff to someone else!!! o_O; This would render the USPS ABSOLUTELY WORTHLESS! :P
(Score: 0) by Anonymous Coward on Thursday August 21 2014, @07:49PM
Nowadays everybody demands 2 forms of ID, but the second one can be weak, as in no photograph like a vehicle registration.