BBC reports: A council has admitted a series of data breaches, including uploading personal medical details to an online forum. Gateshead Council also sent letters containing private information to the wrong addresses and sent a debtor a list of other people who owed it money. The 19 breaches happened in the ten months after new…
Category: Exposure
That marketing email database that exposed 809 million contact records? Maybe make that two-plus BILLION. (UPDATED: No, don’t. Those claims are not supported)
Update 1: Vinny Troia contacted me to question DynaRisk’s claims. He informs this site that he has all four databases, has all of the data that is in the Dynarisk screenshots, and there is nowheres near 2 billion records. So it seems that this questions is unsettled as yet. DataBreaches.net will be contacting Dynarisk. Update…
AIA Singapore agents’ personal information exposed in apparent data breach
Gabriel Olano reports: AIA Singapore is taking action after the discovery of a potential data breach in which the personal information of 225 of its current and former agents, as well as their family members, was found to be publicly accessible. The insurer is currently running a check on all its systems after it became…
Facebook Messenger bug made it possible for hackers to see who you have been chatting with
Graham Cluley writes: A security researcher has revealed details of a flaw in Facebook Messenger that made it possible for “any website to expose who you have been messaging with.” Imperva’s Ron Masas, who in the past has identified a bug that allowed unauthorised websites to view Facebook users’ location histories, likes and interests, discovered…
An Email Marketing Company Left 809 Million Records Exposed Online
Alyssa Foote reports: By this point, you’ve hopefully gotten the message that your personal data can end up exposed in all sorts of unexpected internet backwaters. But increased awareness hasn’t slowed the problem. In fact, it’s only grown bigger—and more confounding. Last week, security researchers Bob Diachenko and Vinny Troia discovered an unprotected, publicly accessible…
Global Robotic Process Automation Company’s Event App Exposed Attendees Info
In today’s “FFS Moment,” Bob Diachenko reports: On March 1st 2019, I discovered another non password protected MongoDB that appeared to contain data related to San Jose, California based Automation Anywhere. They are the developers of robotic process automation software but this backup contained an application created specifically for Automation Anywhere’s premier customer event called…