Steve Ragan reports: Southern New Hampshire University (SNHU) says they’re still investigating how a database containing some student and class information was exposed to the public. The database was discovered by researcher Chris Vickery shortly before Christmas. Vickery turned to Salted Hash for assistance in resolving the matter, as previous attempts to contact the university…
Category: Exposure
Bucking Clapper? Massachusetts court holds patients have standing to sue based on mere exposure of data alone
In August, 2014, I noted a report involving a transcription contractor of Boston Medical Center exposing patient information on the Internet. BMC notified approximately 15,000 patients and fired MDF Transcription Services because of the incident. Of note, BMC told patients in a notification letter that it had no reason to believe their information had been misused…
In: Confidential data stands exposed on GHMC website
The Hindu reports: It is a free for all on Greater Hyderabad Municipal Corporation’s portal when it comes to data about births or deaths. Thanks to its sloppy security, confidential records of several thousands, alive and dead, stand exposed on the municipal body’s website. At a click of the mouse, birth and death enquiry links…
Did a Christian right-wing organization expose private details of millions of people?
First someone left our voter registration details exposed to the world, but those were “just public records,” some argued. Now a second misconfigured database has been uncovered by Chris Vickery. This one, however, not only includes some states’ voter lists, but it also includes 19 million profiles with private information on religion, household values, gun ownership…
Did AVG leave your personal data exposed?
Ian Sherr reports: Ever had a day where you just wanted to shout, “You had one job“? The latest company to earn the rebuke is Netherlands-based antivirus software maker AVG, whose “Web tuneup” add-on for the Google Chrome browser promised to protect you from surfing to unsafe sites on the Internet. It turns out the…
More details emerge on Steam’s Christmas breach; 34,000 impacted
Valve is now apologizing for the Christmas day incident that exposed users’ information to each other almost randomly. Here’s their announcement today: On December 25th, a configuration error resulted in some users seeing Steam Store pages generated for other users. Between 11:50 PST and 13:20 PST store page requests for about 34k users, which contained sensitive…