When hacktivist @ElSurveillance recently tweeted that 14 government sites had the same vulnerabilities, including MYSQL, Cross Site Script, etc., someone responded that councils were generally not considered “government.” DataBreaches.net had – and will continue to – consider them “government” entities, as local government is still government. And in this site’s experience, council breaches can involve sensitive information,…
Category: Exposure
Aadhaar data leak in Jharkhand raises doubts, again: Here are the details
Business Standard reports: An incident in Jharkhand again seems to have raised some serious questions of Aadhaar’s data-breach vulnerabilities. The Aadhaar numbers of hundreds of thousands of pension beneficiaries were suspected to have been illegally displayed on a government website in Jharkhand, in violation of the Aadhaar Act, The Indian Express reported. The lapse, apparently, occured due…
AU: Patient privacy breach: over 1600 medical letters found dumped in Sydney bin
Kate Aubusson reports: More than 700 public patients have had their privacy breached and potential delays in their follow up care after more than 1600 medical letters were found dumped in Sydney bin. NSW Health is investigating the incident involving a sub-contractor for a company tasked with transcribing medical letters sent from specialists to general practitioners,…
PAUSD student data exposed in Schoolzilla data breach
So we’re beginning to learn a bit more about the Schoolzilla data breach that MacKeeper Security Research Center’s Chris Vickery reported yesterday. Chris had reported that 1.3 million students had their data in the misconfigured Amazon bucket, but he couldn’t be more specific as to where these students came from as he deleted the data…
30,000 London gun owners hit by Met Police ‘data breach’
Gareth Corfield reports: London gun owners are asking questions of the Metropolitan Police after the force seemingly handed the addresses of 30,000 firearm and shotgun owners to a direct mail marketing agency for a commercial firm’s advertising campaign. The first any of the affected people knew about the blunder was when the leaflet (pictured below)…
AU privacy commissioner calls for investigation after Service NSW photo card privacy breach
Georgina Mitchell reports: The NSW privacy commissioner has called for a thorough investigation after thousands of photo ID cards, including gun licences, were mistakenly sent to the wrong people in a “significant” security breach. A total of 2693 cards were sent to the wrong people earlier this month. Among the documents mailed out were 2000 driver’s licences,…