A UK child care voucher scheme has been taken off line after user Nick Gibbins found that the “web” application was exposing personal data for over one hundred thousand users. Gibbins found that the Busy Bees childcare voucher system was actually implemented using Citrix Metaframe, exporting the user interface from a Windows 2000 application to…
Category: Breach Incidents
Physician, heal thyself? Hackers continue exposing vulnerabilities in security firms’ databases
First it was Kaspersky. Then it was BitDefender Portugal. Today it’s F-Secure, but no personal data was accessible. F-Secure posted a response on their site: […] During the last few days a Romanian group has been doing SQL injection attacks on several security vendor’s websites and early this morning they hit us. One of our…
JP: Personal data of 4,210 students, teachers lost
An external hard disc containing the personal information of 4,210 people, including students’ academic records and the addresses of graduates and teachers, has been lost from Ritsumeikan Junior and Senior High School in Kyoto, the school announced Thursday. Believing the disc, which disappeared on Feb. 7, may have been stolen, Ritsumeikan filed a complaint with…
Laptop theft from JetDirect Aviation offices leaves thousands at risk
When JetDirect Aviation Holdings, LLC discovered that a laptop had been stolen from the accounting area of its Weymouth Massachusetts location sometime during the evening of February 2 or early morning of February 3, it wasted no time. The data on the laptop affected 1,576 current employees, as well as 651 former employees, and an…
Heartland Data Breach: Maine Credit Union Says Reported Fraud has Tripled
Some interesting insights into the impact of the Heartland breach on a small credit union are provided in a BankInfoSecurity story: Last week [HealthFirst Credit Union of Waterville] in Maine thought it had seen the last of the Heartland Payment Systems data breach that had affected 261 of its members’ credit cards. Officials now report…
Maine cites hospital for data breach (updated)
It’s not often that we learn of any really serious consequences to hospitals that have suffered a data breach, but a previously reported breach has contributed to problems for Down East Community Hospital in Maine. Eric Russell of the Bangor Daily News reports: In the latest of a series of incidents, Down East Community Hospital…