In a special edition of “No need to hack when it’s leaking,” DataBreaches reports on a software vendor that, despite multiple attempts by multiple parties, continues to expose confidential and sealed court records. Overview As a matter of policy, DataBreaches does not publish unredacted stolen or leaked data if it would expose personally identifiable or…
Category: Exposure
NSW gov contractor uploaded Excel spreadsheet of flood victims’ data to ChatGPT
Ry Crozier brings us today’s installment of the “No Need to Hack When It’s Leaking” Files The victims of the breach are applicants to the Northern Rivers Resilient Homes Program, under which the government is offering to either buy back flood-prone homes, contribute to the cost of rebuilding, or to improve resilience such as by elevating…
When it rains, it pours? Kido had a second incident to address
DataBreaches did not mention this publicly sooner because Kido was already under great pressure due to the breach involving children’s personal information and photos. But now that many people are feeling some relief that the hackers have supposedly deleted all the data and won’t be calling parents any more, DataBreaches can reveal that on Monday,…
Archer Health was leaking protected health information. Criminals appear to have found it. (2)
From our “No Need to Hack When It’s Leaking” files, a report involving Archer Health, an in-home healthcare provider. Website Planet recently reported a misconfigured bucket that was found by researcher Jeremiah Fowler. The unencrypted and non-password-protected database reportedly contained approximately 145k files (totaling 23 GB). “In a limited sampling of the exposed files, I…
Columbia University Irving Medical Center pays $600K in data breach lawsuit settlement
In May 2024, DataBreaches logged an incident on our worksheets that involved the Columbia University Irving Medical Center in New York. The incident had been reported to HHS as affecting 29,629 patients whose name, medical record number, date of birth, provider name, and laboratory test result had been exposed between Sept. 11, 2023, and March…
Neon, the No. 2 social app on the Apple App Store, pays users to record their phone calls and sells data to AI firms
Great investigative journalism by Zack Whittaker on TechCrunch. First, he reports: A new app offering to record your phone calls and pay you for the audio so it can sell the data to AI companies is, unbelievably, the No. 2 app in Apple’s U.S. App Store’s Social Networking section. The app, Neon Mobile, pitches itself as…