Ry Crozier reports: Banks have started warning customers of a fresh data breach involving PayID records that was reported to new payments platform overseer NPP Australia late Friday. NPP Australia said that an undisclosed number of PayID records “and associated data in the Addressing Service were exposed by a vulnerability in one of the financial…
Category: Exposure
Arizona State University accidentally reveals email addresses of 4,000 students in HIPAA breach
3TV reports: Arizona State University has notified 4,000 students that their email addresses “were accidentally revealed” in a large data breach. ASU told the students on Aug. 16 it happened in late July when a university office sent bulk emails about renewing health insurance coverage without masking the identities of the recipients. Read more on…
Cincinnati Public School students’ busing info, including pickup spots, inadvertently released to wrong recipients
Max Londberg reports: Cincinnati Public Schools inadvertently released busing information, such as students’ names and their pickup and drop-off locations, to the wrong recipients. The district planned to disseminate about 7,000 students’ information Thursday as a reminder to families as the first day of school approaches. But the district’s internal email system sent an unknown…
Companies Puzzled After Report Says Their Biometric Data Leaked
Bloomberg has an interesting follow-up on a headline-grabbing report from this week: Millions of pieces of personal data, including fingerprints, may have been leaked from a cloud-based service that stores biometric data for companies and organizations worldwide, security researchers said. Computer scientists working with software firm VpnMentor said they discovered a vulnerability in South Korean…
Public Transport Victoria in breach of Privacy Act after re-identifiable data on over 15m myki cards released
Asha Barbaschow reports: Public Transport Victoria (PTV) has been found in breach of the Privacy and Data Protection Act 2014 (PDP Act) by the Office of the Victorian Information Commissioner (OVIC) for releasing data that exposed the travel history of 15,184,336 myki cards. The myki dataset contained a record of “touch on” and “touch off”…
Major breach found in biometrics system used by banks, UK police and defence firms
Josh Taylor reports: The fingerprints of over 1 million people, as well as facial recognition information, unencrypted usernames and passwords, and personal information of employees, was discovered on a publicly accessible database for a company used by the likes of the UK Metropolitan police, defence contractors and banks. Suprema is the security company responsible for…