Dana Branham reports: OU unintentionally exposed thousands of students’ educational records — including social security numbers, financial aid information and grades in records dating to at least 2002 — through lax privacy settings in a campus file-sharing network, violating federal law. The university scrambled to safeguard the files late Tuesday after learning The Daily had…
Month: June 2017
Personal data from Cowboys Casino hack surfaces online
Back in June, 2016, Cowboys Casino announced it was investigating a data breach that impacted employee and corporate data, including customer data. Today, Brodie Thomas reports that personal information acquired by the hackers last year has appeared online. The anonymous hackers, who released about 484 megabytes of documents online via a torrent site, left a…
Oops. Tata dev accidentally leaked banks’ code on public GitHub repo
Iain Thomson reports: Staff at Indian outsourcing biz Tata Consultancy Service uploaded a huge trove of financial institutions’ source code and internal documents to a public GitHub repository, an IT expert has claimed. Jason Coulls, CTO of food safety testing company Tellspec and a former banking software developer, said he stumbled upon the collection of…
Hong Kong privacy watchdog blasts electoral office for massive data breach
Ng Kang-Chung reports: A report by the Privacy Commissioner found the electoral office failed to take adequate steps to protect the personal data of Hong Kong’s 3.78 million voters stored in one of two laptop computers that were stolen during the chief executive election in March. Read more on South China Morning Post. Kang-Chung provides…
UK: Gloucester City Council fined by ICO for not updating OpenSSL promptly, which permitted Heartbleed exploitation by Anonymous
The Information Commissioner’s Office (ICO) has fined Gloucester City Council £100,000 after a cyber attacker accessed council employees’ sensitive personal information. The attacker took advantage of a weakness in the council’s website in July 2014, which led to over 30,000 emails being downloaded from council mailboxes. The messages contained financial and sensitive information about council…
You shot the messenger and then needed her help? How did that work out for you?
Some readers might appreciate an update as to what happened when Bronx-Lebanon Hospital Center and iHealth Solutions sent legal threat letters to this site after I notified them and reported that they were leaking protected health information. As I previously noted, I was – and remain – very grateful to Covington & Burling for their representation of me and this…