Lester Wong reports from Singapore: Insurance company AIA was fined $10,000 by the Personal Data Protection Commission (PDPC) for mistakenly sending 245 letters meant for various customers to just two people due to a programming error in its software system that auto-generates the letters. The bulk of the letters (237) were premium notice letters for…
Category: Exposure
Email gaffes are still a thing. Why? HIV patients hit by NHS Highland email privacy breach
BBC reports: The email addresses of almost 40 people who have HIV have been made public by mistake. It is understood the 37 patients in the Highlands were able to see their own and the others people’s addresses in an email from NHS Highland. Read more on BBC.
Parliament chiefs investigate claims its website was hacked amid fears of confidential data breach
Matt Dathan reports: The site containing bills currently before Parliament was showing private folders not meant for publication. One Twitter user said they had found passwords had leaked online too. A Parliamentary spokesman said it was looking into the reports but said it had not found any evidence that confidential parliamentary data had been breached….
Thousands of medical injury claim records exposed by ad agency
Zack Whittaker reports: An internet advertising company specializing in helping law firms sign up potential clients has exposed close to 150,000 records from a database that was left unsecured. The database contained submissions as part of a lead-generation effort by X Social Media, a Florida-based ad firm that largely uses Facebook to advertise various campaigns…
Report: Job Portal Database Exposed
SafetyDetective reports: SafetyDetective’s research lab discovered a leak online that exposed an elastic server containing 3GB of data with over 1.6 million users affected. We informed the apparent owners of this database as soon as we were able to identify them. Because we did not receive a response from the owner of the database, we…
Personal information of 160 students exposed for three weeks on Temple website
Kelly Brennan reports: The personal information of 160 Temple University students was exposed after an employee accidentally uploaded a document containing information like dates of birth, cell phone numbers and passport information to a public university website. An employee in Temple’s Risk Management office uploaded the document to the Temple University Travel Registry Site on…