Vistaprint. Everyone knows it and probably almost everyone knows somebody who has used the firm to design or print business cards, brochures, or other business-related stationery or marketing-related materials. Recently I was on Vistaprint’s site to create a new logo for ctrlbox.com. To my unpleasant surprise, I discovered that the preview of my logo displayed…
Category: Exposure
Philadelphia hepatitis data exposure posed ‘no risk to confidentiality’ because of Inquirer notification, city says
Nathaniel Lash reports: The medical records of thousands of Philadelphians were not compromised, the city said, after The Inquirer notified the city’s Health Department of a data breach that attached positive hepatitis test results with intimate personal details. This finding comes after an investigation by the city’s Public Health Department and a team with the…
Healthcare startup Lyfebin exposed medical images; startup denies they were real or identifiable patient data
Zack Whittaker reports: Healthcare startup Lyfebin exposed thousands of medical imaging files, such as X-rays, MRI scans and ultrasounds. The Los Angeles-based healthcare startup allows doctors and medical staff to store medical images in its “secure environment,” per its website, allowing patients and doctors access from anywhere. This seems to be one of those situations…
Fashion rental company HURR Collective exposed user information through misconfigured plugin
James Walker reports: HURR Collective, a UK-based fashion rental company, has notified around 400 users of a data security incident that resulted in their email addresses being exposed, The Daily Swig has learned. A misconfigured plugin on the HURR website meant that users’ email addresses could be obtained simply by clicking ‘View Source’ on certain web pages….
Over 267 million Facebook users had their names, phone numbers, and profiles exposed thanks to a public database, researcher says
Kevin Webb reports: Cybersecurity researchers said on Thursday that more than 267 million Facebook users had their personal data exposed in an online database that collected their names, Facebook IDs, and phone numbers. The database was available online without a password to anyone who accessed it for about two weeks, according to Comparitech, a tech website,…
UK: Information Commissioner’s Office takes enforcement action against pharmacy
From the ICO: The Information Commissioner’s Office (ICO) has fined a London-based pharmacy £275,000 for failing to ensure the security of special category data. Doorstep Dispensaree Ltd, which supplies medicines to customers and care homes, left approximately 500,000 documents in unlocked containers at the back of its premises in Edgware. The documents included names, addresses,…