Vic Micolucci reports on yet another case where records with personally identifiable information are left behind – and then disposed of improperly – when a business closes: Hundreds of pages of personal information, including credit card numbers and Social Security numbers, were found in a Jacksonville dumpster behind a business on San Juan Avenue and Blanding…
Category: Business Sector
Medical records of almost 180,000 patients handed to US firms connected to tobacco industry by British health officials, Telegraph probe reveals
Laura Donnelly reports: The medical records of British cancer victims have been handed to a controversial American firm working for one of the world’s biggest tobacco companies, the Daily Telegraph can reveal. The data covering almost 180,000 patients – every case of lung cancer diagnosed in England over a four year period – was given by…
Blackwallet hacked: Report
There are reports tonight that Blackwallet has been the victim of a DNS hijack. Blackwallet (web wallet) has apparently been hacked pic.twitter.com/HhewwBXnD9 — Kevin Beaumont (@GossiTheDog) January 14, 2018 This is the wallet, it’s about half a million quid worth. https://t.co/dFhDKcHjVQ — Kevin Beaumont (@GossiTheDog) January 14, 2018 Looking at the wallet in question, it…
Inside Uber’s $100,000 Payment to a Hacker, and the Fallout
Nicole Perlroth and Mike Isaac report: “Hello Joe,” read the November 2016 email from someone identifying himself as “John Doughs.” “I have found a major vulnerability in Uber.” The email appeared to be no different from other messages that Joe Sullivan, Uber’s chief security officer, and his team routinely received through the company’s “bug bounty”…
The Coca-Cola Breach and Who’s on Hook for Security of Employee Data
Chris Opfer writes: Six years after Shane Enslin left his repairman job at a Coca-Cola distribution plant in Pennsylvania, the company told him that his Social Security number and other personal information might have fallen into the wrong hands. A few months later, a declined credit card upended his family vacation. Then came a third…
Website operators are in the dark about privacy violations by third-party scripts
by Steven Englehardt, Gunes Acar, and Arvind Narayanan Recently we revealed that “session replay” scripts on websites record everything you do, like someone looking over your shoulder, and send it to third-party servers. This en-masse data exfiltration inevitably scoops up sensitive, personal information — in real time, as you type it. We released the data…