Nikko Dizon reports: As the number of coronavirus cases in the Philippines steadily increased from mid-March to late May, the National Privacy Commission (NPC) had been investigating 22 complaints of privacy breaches involving more than 150 COVID-19 patients, as well as suspected and probable cases. In at least 7 of these cases, the breach was committed…
Category: Exposure
Twitter says some business users had their private data exposed
Zack Whittaker reports: Flip the “days since the last Twitter security incident” back to zero. Twitter said Tuesday that it has emailed its business customers, such as those who advertise on the site, to warn that their information may have been compromised in a security lapse. Read more on TechCrunch.
N.S. government reveals May privacy breach involved 10,599 unredacted decisions
Yvonne Colbert reports: The Nova Scotia government has now disclosed the number of unredacted decisions posted online in a May privacy breach by the Workers’ Compensation Appeals Tribunal totalled 10,599. The decisions contained highly-sensitive information, including employer names, as well as employee names and their medical and psychiatric information. Until now, the government has said little…
‘Procedural error’ cause for leak of HIA names
Andrew Madden reports: Four groups representing survivors of historical institutional abuse have backed Interim Victims’ Advocate Brendan McAllister after a data breach at his office was attributed to a “procedural error”. A full review of how information is managed has been recommended following the breach that resulted in the identities of hundreds of abuse survivors being…
80,000 printers are exposing their IPP port online
Catalin Cimpanu reports that some lessons that could have been learned years ago — and should have been — are still unlearned by too many. In a report published earlier this month, security researchers from the Shadowserver Foundation, a non-profit organization focused on improving cyber-security practices across the world, have published a warning about companies…
Deloitte Consulting sued in two states over unemployment portal data security issues
Last month we started seeing reports of data leaks or breaches involving state unemployment benefits application portals. We also started seeing reports of lawsuits filed as a result. Ben Szalinski reports that in Illinois, one of the nearly 32,500 applicants who had private information exposed said it was used to access her bank account. Briana…