Since the summer of 2019, this site has occasionally reported on findings by WizCase researchers, such as our report in October on multiple entities that they had discovered leaking medical or health data. Today, WizCase reported on three more leaks that they discovered leaking patient data. They shared their findings exclusively with DataBreaches.net. The first…
Category: Exposure
UK: RideLondon organisers apologise after data breach
BBC reports: Organisers of the RideLondon cycling event are “urgently looking into” a data breach involving potential participants’ personal details. It is unclear how many applicants have been affected by the issue which saw entrants receive other people’s ballot results. The events, due to be held in August, is open to 80,000 applications and last…
Estee Lauder Exposed 440 Million Records Online – Researchers
Jeremiah Fowler reports (typos are in the original): On January 30th I discovered a non-password protected database that contained a massive amount of records totaling 440,336,852. Upon further review I was able to see connections to New York based cosmetic company Estée Lauder. I could see audit logs that contained a large number of email addresses…
Personal info of 6m. Israelis leaked after Likud uploads voter info
Tzvi Joffre reports: The personal information of 6,453,254 Israelis was leaked after the Likud Party uploaded the entire Israeli national voter registry to an application, according to Haaretz. The leaked information includes names, identification numbers, phone numbers and addresses. Political parties in Israel receive the information of Israeli voters before the elections and have to protect their privacy…
100K IU Student GPAs Accidentally Made Available To All Students, Staff
Tyler Lake reports: Indiana University officials say a tool designed to help university staff access student grade point averages was unintentionally made available to the entire IU community. Spokesperson Chuck Carney says the tool was immediately disabled once the ability to access all enrolled students’ GPAs was made known to IU officials. The Indiana Daily Student…
UK: Data leak exposes 17,000 yachting industry professionals
Lucy Ingham reports: A data breach at UK-based Crew and Concierge Limited has exposed the personal data of 17,379 people of 50 different nationalities working in the yachting industry. Crew and Concierge is an international recruitment agency specialising in securing staff for ultra-high-net-worth clients’ yachts operating around the world. Read more on Verdict.