Channel NewsAsia reports: The National University of Singapore (NUS) has to put in place an e-training module for all its students on personal data protection, after it emerged that the personal particulars of 143 student volunteers were breached in 2016. In a press statement on Friday (Apr 28), an NUS spokesperson said a URL link…
Category: Exposure
AU: Privacy breach costs $23,000 – but could have been worse
Alison Baker and Rhiannon Nixon of Hall & Wilcox write: The Office of the Australian Information Commissioner (OAIC) has ordered Comcare to pay a Defence Force employee $23,000 after it inadvertently published on its website personal information, including sensitive health information, about the employee. For organisations with obligations under the Privacy Act 1988 (Cth), this…
Info on Home Depot customers exposed (but no financial data)
Michael E. Kanell reports: A spread sheet listing about 8,000 customers, along with their transaction and a range of personal information, was posted for an unknown amount of time, on a Home Depot web site. No financial data was part of the list, which did not compare with the 2014 data breach in which hackers…
UK: Privacy breach at Gloucestershire County Council exposed medical information online
When hacktivist @ElSurveillance recently tweeted that 14 government sites had the same vulnerabilities, including MYSQL, Cross Site Script, etc., someone responded that councils were generally not considered “government.” DataBreaches.net had – and will continue to – consider them “government” entities, as local government is still government. And in this site’s experience, council breaches can involve sensitive information,…
Aadhaar data leak in Jharkhand raises doubts, again: Here are the details
Business Standard reports: An incident in Jharkhand again seems to have raised some serious questions of Aadhaar’s data-breach vulnerabilities. The Aadhaar numbers of hundreds of thousands of pension beneficiaries were suspected to have been illegally displayed on a government website in Jharkhand, in violation of the Aadhaar Act, The Indian Express reported. The lapse, apparently, occured due…
AU: Patient privacy breach: over 1600 medical letters found dumped in Sydney bin
Kate Aubusson reports: More than 700 public patients have had their privacy breached and potential delays in their follow up care after more than 1600 medical letters were found dumped in Sydney bin. NSW Health is investigating the incident involving a sub-contractor for a company tasked with transcribing medical letters sent from specialists to general practitioners,…