Shaun Nichols reports: Exclusive A database containing the personal details of 56.25m US residents – from names and home addresses to phone numbers and ages – has been found on the public internet, served from a computer with a Chinese IP address, bizarrely enough. The information silo appears to belong to Florida-based CheckPeople.com, which is a…
Category: Exposure
Chinese tech companies still can’t stop medical data leaks
Eliza Gkritsi follows up on something previously reported on this site based on research by WizCase that they had shared with this site. WizCase subsequently updated their own post, here. Two security flaws at Chinese medical device operators put over 24 million patient records at risk in October. These medical data leaks reveal how cybersecurity practices…
Mercy Health Lorain Hospital Laboratory patients notified of HIPAA breach due to contractor invoice printing error
Although no actual or attempted access or misuse of patient or guarantor information has been discovered, RCM Enterprise Services, Inc. (“RCM”) is providing notice to certain individuals regarding an error in the invoice mailing process that caused individually identifiable information to appear in the clear address “window” on medical invoices. RCM provides patient billing services…
UK: Home addresses of Elton John, Gabby Logan, Nadiya Hussain and every other recipient on New Year’s Honours list – including senior police and anti-terrorism officials – are accidentally published by the Cabinet Office
Oops. Ryan Fahey reports: The Cabinet Office uploaded the home and work addresses of more than 1,000 recipients of New Years’ Honours, including Elton John, Ben Stokes, Iain Duncan Smith and TV chef Nadiya Hussain. The work and home addresses of counter-terrorism officials, senior police and Ministry of Defence (MoD) staff were also included in…
IoT provider Wyze confirms server leak
Suzanne Larosa reports: Wyze, a company that sells smart devices such as security cameras, smart plugs, smart light bulbs and smart door locks, today confirmed a server leak that exposed the details of approximately 2.4 million customers. The leak occurred after an internal database was accidentally exposed online, Wyze co-founder Dongsheng Song said in a…
Vistaprint Logomaker files viewable due to insecure Amazon s3 bucket
Vistaprint. Everyone knows it and probably almost everyone knows somebody who has used the firm to design or print business cards, brochures, or other business-related stationery or marketing-related materials. Recently I was on Vistaprint’s site to create a new logo for ctrlbox.com. To my unpleasant surprise, I discovered that the preview of my logo displayed…