Mazhar Farooqui reports an update to a hack and data dump involving InvestBank customers: The cyber criminal who hacked into a Sharjah bank last month has gone on the rampage. After the bank refused to give into his blackmail and pay $3 million in ransom money, the criminal Hacker Buba has posted the confidential details…
Category: Exposure
More details emerge on Hellgate student info breach
And this, children, is another reminder of what can go oh-so-very-wrong when you don’t follow procedures and protocols. Cassidy Belus reports: Missoula County Public Schools held a press conference Dec. 15 to address the recent Hellgate data breach, which accidentally released personal student information via email. Information about approximately 1,100 students were released. Assistant principal Libby…
JP: Data on Sakai’s 680,000 voters in 2011 election leaked online
Kyodo News reports: The municipal government of Sakai in Osaka Prefecture said Monday personal information on all the around 680,000 voters in the 2011 Osaka gubernatorial election had been leaked on the Internet, as an employee had handled the data inappropriately. The city fired the 59-year-old male employee, who had access to data such as…
Wish list app from Target springs a major personal data leak
Dan Goodin reports: According to researchers from security firm Avast, the database storing the names, e-mail addresses, home addresses, phone numbers, and wish lists of Target customers is available to anyone who figures out the app’s publicly available programming interface. Read more on Ars Technica.
Meanwhile, back at the VA….
The VA’s monthly report to Congress for November has been released, and we’re still seeing low-tech breaches involving papers being left where they shouldn’t be left. Exhibit A, from the VA in Boston: An 11-page clinic list was found in a public bathroom in a heavily trafficked area. The list had been printed on November 4,…
Update: OkHello (FINALLY) secures its leaking database (Update2)
After discovering that OkHello video chat service’s database was still leaking – nine days after Chris Vickery and I first notified them and tried to get them to secure it – I sent two more emails to OkHello last night to repeat the notification. Both were to email addresses that were only found last night (and great thanks to Steve Ragan…