Hamish McNeilly reports: An online loophole allowed a handful of users to access a veritable treasure trove of information at the University of Otago. The types of information, revealed to Stuff following an Official Information Act request, included phone numbers, addresses, passport details, exam results, police vetting lists, academic integrity investigation invitation letters, referee reports,…
Category: Exposure
ICE accidentally released the identities of 6,252 immigrants who sought protection in the U.S.
Hamed Aleaziz reports: Immigration and Customs Enforcement accidentally posted the names, birthdates, nationalities and locations of more than 6,000 immigrants who claimed to be fleeing torture and persecution to its website on Monday. The unprecedented data dump could expose the immigrants — all of whom are currently in ICE custody — to retaliation from the…
No Need to Hack When It’s Leaking, Friday Global Edition
For today’s episode of “No Need to Hack When It’s Leaking,” DataBreaches brings you three leaks involving patient/medical information: one from the U.S., one from India, and one from Australia. Tridas Center Jeremiah Fowler and the Website Planet research team discovered an unsecured database containing more than 16,000 records with personally identifiable information about pediatric…
Community Health Network notifies patients of meta pixel breach
Community Health Network in Indiana has become the latest healthcare entity to notify patients that their protected health information was transmitted via trackers on their website from Google and Meta. Their FAQ page attempts to explain it in basic English and does a good job, but there’s no getting around this: Any individual who visited…
Personal data of over 30,000 students leaked from Kannur University’s official website
Mathrubhumi.com reports: The personal data of over 30,000 students at Kannur University were reportedly leaked. A private cyber security agency in Kochi found that the data were published on a dark web portal. As per the preliminary assumption, the data of the students were leaked due to a technical glitch in the university’s official website….
UK: Reading clinic leaked the email addresses of 288 patients in an emailed invitation
Jay Jay reports: The South Reading & Shinfield Group Medical Practice, a healthcare clinic in Reading, recently leaked the email addresses of many of its patients after clinic officials included their email addresses in an emailed invitation. Source: Teiss