Amanda Audi reports: Federal government agencies were convicted for leaking data of beneficiaries of Auxilio Brasil, a flagship federal aid program now renamed as Bolsa Familia, to financial agencies offering payroll deduction loans to low-income Brazilians. Prior to elections last year, the administration of former President Jair Bolsonaro launched a program allowing people enrolled in…
Category: Exposure
Maker of ‘smart’ chastity cage left users’ emails, passwords, and locations exposed
Lorenzo Franceschi-Bicchierai reports on yet another incident in which responsible disclosure by a researcher and follow-up by media failed to get a company to address vulnerabilities that left the personal information of customers exposed: A company that makes a chastity device for people with a penis that can be controlled by a partner over the…
NL: Security breach at land registry exposes millions of addresses
Dutch News reports: A data breach at the Dutch land registry Kadaster has exposed the addresses of every homeowner in the Netherlands, an investigation by RTL Nieuws has found. The privacy watchdog AP called for the agency to close the loophole immediately after it was discovered by journalists. The Kadaster’s website includes a search facility…
NYC Finance Department Sent Every Employee Their Colleagues’ Personal Info
Yoav Gonen reports: The city Department of Finance inadvertently emailed a roster of all of its staff — containing home addresses, cell numbers and personal email addresses — to the agency’s roughly 1,800 employees in a botched test of its emergency notification system, THE CITY has learned. The snafu was accompanied by automated calls to…
UK: Press notice regarding data breach at Norfolk and Suffolk police
Norfolk and Suffolk constabularies have identified an issue relating to a very small percentage of responses to Freedom of Information (FOI) requests for crime statistics, issued between April 2021 and March 2022. A technical issue has led to some raw data belonging to the constabularies being included within the files produced in response to the…
Cumbria Police admits huge data breach as names and salaries of staff published online
Jon Macpherson reports: Another police force has admitted a data breach after the names and salaries of all its staff were accidentally published online. Cumbria Police said that on March 6 it found out information about pay and allowances had been uploaded on its website following a “human error”. The force’s admission comes after an…