This is not the first time we’ve seen a cleaning crew accidentally improperly dispose of patient records, but I do like Allina Health’s response to this incident to prevent recurrences. February 23 – This announcement is regarding a privacy incident that occurred at Minneapolis Heart Institute® at Abbott Northwestern Hospital, located at 800 E 28thSt., Minneapolis,…
Category: Exposure
SLO County Clerk-Recorder’s Office accidentally releases Social Security numbers
Matt Fountain reports: Twelve people, including 10 San Luis Obispo County residents, were notified this week that their Social Security numbers were “inadvertently” released to two private title companies because of a technical error, the county Clerk-Recorder’s Office said Thursday. The 12 people have been notified of the breach and urged to monitor their credit reports, Assistant Clerk-Recorder…
Hundreds of Lowe’s customers’ personal information compromised
Paul Boyd reports: Personal information connected to hundreds of Lowe’s customers has been compromised. The breach is connected to a fax machine in Vancouver, Canada. A spokesperson from the company that owns the machine does not want to be identified, but said they have received more than 250 pages of customer order information in recent…
It was a good day for dumpster divers…
Steve Barrett reports from Florida: An Orlando man searching for scrap metal Tuesday night reported finding thousands of financial documents ripe with people’s personal information tossed in a dumpster. For identity thieves, the documents would have been a gold mine of information. “(They contained) emails, phone numbers, date of birth, child’s date of birth, you…
Spiral Toys sends something to the California Attorney General, but what is it?
This just gets stranger and stranger in terms of how Spiral Toys is responding to the CloudPets leak and hack reported by Troy Hunt. The following is a Spiral Toy notification, sent to the California Attorney General’s Office today, below. All typos are as in the original. Why they sent this thing to the California Attorney General’s…
Data from connected CloudPets teddy bears leaked due to misconfigured database; 820,000 kids’ files exposed
Troy Hunt reports that a misconfigured MongoDB installation resulted in audio files of children’s and parents’ conversations recorded by CloudPets being exposed in a Shodan search. And as we’ve seen many other times, the exposed files were deleted by an attacker, and a purported “ransom” note left in place of the database – a ransom note that was…