Maybe we should do this one as a “write your own headline” exercise. Earlier this week, Kromtech Security reported that they had uncovered yet another improperly secured AWS S3 bucket that was exposing protected health information. The company that was responsible for the collection of the home monitoring data, Patient Home Monitoring, was exposing what…
Category: Exposure
Accenture left a huge trove of highly sensitive data on exposed servers
Zack Whittaker reports: Technology and cloud giant Accenture has confirmed it inadvertently left a massive store of private data across four unsecured cloud servers, exposing highly sensitive passwords and secret decryption keys that could have inflicted considerable damage on the company and its customers. The servers, hosted on Amazon’s S3 storage service, contained hundreds of…
NJ: Toms River Police Respond To Possible Data Breach
Chris Lundy has an update to a breach previously noted on this site last month. After a malfunction, some documents on a police database were potentially able to be accessed by non-police, according to a statement released by Chief Mitch Little. The incident began on Aug. 2, when it was discovered that the Computer Assisted…
City of Calgary embroiled in privacy breach class-action lawsuit
Lyle Adriano reports: The city of Calgary is facing a $92.9 million lawsuit for allegedly breaching the privacy rights of its employees. The suit, filed Tuesday, alleged a privacy breach in June 2016. The document claims that a city staffer sent an email to an employee of another Alberta municipality which contained the personal information…
Private data of more than 1,100 NFL players, agents exposed
Max Greenwood reports on another find by Kromtech Security: The personal data of more than 1,100 NFL players and agents was exposed as the result of a misconfigured online database, a cybersecurity company has revealed. Bob Diachenko, the chief communications officer for Kromtech Alliance, wrote in a blog post on the company’s website Monday that researchers…
Aetna offers immediate relief program to members affected by HIV disclosure incident
As this site noted in August, health insurer Aetna had a privacy breach when almost 12,000 members’ HIV status was unintentionally disclosed in mailing envelope windows. This week, Aetna announced it was offering immediate assistance to members affected by the breach. It’s unusual to see a breached entity offer such immediate assistance, and I think…