Paris Cowan reports: A NSW tribunal has ruled that the state’s Medical Council breached privacy laws when it published what it thought was a redacted PDF document on its website, but in doing so revealed the hidden identities of a doctor and her son to Google’s web crawling bot. In April, the NSW Civil and…
Category: Exposure
NZ: Problem gamblers’ privacy breached when list tossed in footpath bin
Nancy El-Gamel reports on a breach that reminds us of how important it is that confidential records be kept, well, confidential: The names and photos of 56 problem gamblers on a secret TAB list were stuffed into a public rubbish bin in Hamilton and found by a passer-by. The 33 pages of private and confidential…
WA: Behavior intervention specialist’s client records exposed in misconfigured database
On her web site, Patricia Mullen describes herself as a “behavior intervention specialist” and a former special education teacher. According to her site, she has worked in many school districts and agencies throughout the state of Washington consulting and training. Patricia is also a national trainer having presented to hundreds of foster parents, teachers, and providers…
Car Breathalyzer FIrm Gets Hacked, Internal Docs Dumped on Dark Web
Joseph Cox reports: Earlier this week, a hacker called ROR[RG], who acts as the moderator of the recently re-booted Hell hacking forum, dumped supposed internal documents of LMG Holdings, and more specifically, at least one of the companies it owns, “LifeSafer,” which describes itself on its website as “the nation’s leader in ignition interlock technology.” […] The data itself…
Massachusetts sues lawyer-realtor for alleged violations of data storage, records disposal, and security breach laws
Katie Johnston of the Boston Globe reports that Massachusetts Attorney General Maura Healey has sued Duxbury lawyer and real estate broker Michael Haney after approximately 120 boxes with his clients’ real estate closing files were found “waterlogged and exposed to the elements” on a former client’s property in 2014. More than 1,200 Massachusetts residents are thought…
FTC e-mail gaffe reveals 600 attendees’ email addresses before privacy conference
Laura Hautala reports: Maybe I’m naive to expect a certain savviness about privacy from the FTC, especially just before it convenes a group of experts in privacy and cybersecurity at a conference in Washington, DC, next week. I certainly didn’t expect the agency to accidentally send out a list of every attendee’s email address. But,…