And if there haven’t been enough recent data incidents involving car manufacturers and their vendors, here’s a leak to give wannabe criminals some additional details that they might be able to use in a phishing or social engineering campaign. WebsitePlanet reports: Cybersecurity Researcher Jeremiah Fowler discovered and reported to Website Planet about an unencrypted and non-password-protected database…
Category: Exposure
No Need to Hack When It’s Leaking: App for outing Charlie Kirk’s critics leaked its users’ personal data
Mikael Thalen reports: An app for anonymously reporting individuals accused of speaking ill against conservative activist Charlie Kirk leaked personal data about its users. The app, known as “Cancel the Hate,” was taken offline on Thursday amid an investigation into the data leak by Straight Arrow News. Launched in the wake of Kirk’s assassination on Sept. 10,…
FOIA Document on Breach of Sensitive DHS Domestic Intelligence Sharing Portal
Today’s entry in our “No Need to Hack When It’s Leaking” files is courtesy of the Brennan Center, which obtained an internal oversight report detailing the two-months-long exposure of federal, state, and local intelligence about Americans. A 2024 internal oversight report from the Office of Intelligence and Analysis of the U.S. Department of Homeland Security…
Church of England alleged to have breached abuse survivors’ data
Tim Sigsworth, Fiona Parker, and Janet Eastham report: The Church of England is investigating claims it breached the personal data of almost 200 abuse survivors. An official is reported to have failed to conceal the contact details of applicants to a compensation scheme in an email. Unredacted names, email addresses and personal data were therefore visible to other recipients,…
UK Cannabis Clinic CB1 Medical Investigating As Patients Affected By Major Data Leak
Sarah Sinclair reports: A UK medical cannabis clinic is carrying out investigations after a substantial amount of patients’ information was leaked in a major data breach. In an email sent to patients on Monday 18 August, CB1 Medical confirmed it had identified a ‘data security incident’ when patients’ personal details, including prescription information, were found…
Government papers found in an Alaskan hotel reveal new details of Trump-Putin summit
For the “No need to hack when it’s leaking” and the “our government is our insider threat” files, Chiara Eisner of NPR reports: Papers with U.S. State Department markings, found Friday morning in the business center of an Alaskan hotel, revealed previously undisclosed and potentially sensitive details about the Aug. 15 meetings between President Donald…