Brian Krebs reports: TCM Bank, a company that helps more than 750 small and community U.S. banks issue credit cards to their account holders, said a Web site misconfiguration exposed the names, addresses, dates of birth and Social Security numbers of thousands of people who applied for cards between early March 2017 and mid-July 2018….
Category: Exposure
EXCLUSIVE: Creditmate.in developer’s goof left 19,000 consumers’ credit reports unsecured
By Dissent Doe and Lee Johnstone On July 27, an independent researcher known as “Flash Gordon” (@s7sins on Twitter) contacted DataBreaches.net and Lee Johnstone to report that during a routine keyword search on Google, he had found numerous credit reports from Indian consumers exposed. Identifying the owner of the database was not easy in this…
Forum post claims breach of 850k users’ information; leak from recruitmilitary.com?
Lee Johnstone reports on a leak involving a non-profit organization that tries to match employers with job seekers who are veterans: Today a user has posted a new thread to a known forum that makes claim of an breach of over 850,000 US military officers personal information. The user who goes by the name booloop…
Department of Human Services Alerts HHS and Pennsylvanians of Compass System Error
If you are like me, you might not realize from their original headline, “Department of Human Services Alerts Pennsylvanians of Compass System Error” that they’re talking about a breach involving PHI. I just figured North was pointing South for a while or something like that…. Anyway, here is the notice that explains their recent report…
Wikileaks’ Twitter Chats Exposed as 11,000 Private Messages Posted Online
Jason Murdock reports: More than 11,000 messages from a Twitter group used by WikiLeaks have been posted online in full, exposing private chats between 2015 and 2017. The cabal—populated with around 10 close supporters—was a “low security” group created to share news stories, distribute disclosures, collate freedom of information requests, discuss politics and, in WikiLeaks’ own words,…
State survey leads to Vermont Health Connect email breach
Mike Faher reports: A survey snafu last week led to the disclosure of some Vermont Health Connect and Medicaid customers’ email addresses, state officials said Thursday. In total, 127 people sent emails – some inadvertently and some not – to other health insurance consumers amid confusion about an online survey issued July 20 through the Department…