Katie Morley reports: A security hole in Halifax and Bank of Scotland’s online banking facilities has put tens of thousands of customers at risk of fraud by leaving their financial activities visible to anyone. The glitch meant fraudsters were able to view accounts without using hacking devices as they would only need someone’s name, date…
Category: Exposure
Uber Left Hundreds of Drivers’ Licenses and Social Security Numbers Exposed
Motherboard reports: Due to an apparent mistake, Uber left the personal information of what appears to be hundreds of drivers exposed online, including their Social Security numbers, scans of driver licenses, tax forms, and other data. The data leak seems to be linked to the company’s new “Uber partner” app, designed to provide drivers with…
Are Half of the Hacked Patreon Accounts Fake?
Brady Dale reports; t looks like hackers quietly siphoned data from Patreon, the site for financing creative people’s work via the crowd, for a very long time. That said, more than half the user emails found in the hack bear the markings that suggest they were likely fake accounts. Read more on Observer. Note that…
Cryptome grudgingly admits to leak of users’ ancient IP addresses
Richard Chirgwin reports: Venerable leak site Cryptome.org has ‘fessed up to a data leak that saw some users’ IP addresses reach the Internet. After initially dismissing data posted by security researcher Michael Best as a mockup, Cryptome founder John Young conceded that a USB key sent to some of the site’s supporters included site statistics…
UK: Derby City Council publishes information on 700 school posts amid pay review saga
John Dickens reports: Details that could reveal the salaries of hundreds of school staff caught up in a controversial equal pay review have been published online, leading to concerns over a data protection breach. Derby City Council has published information on more than 700 school posts on its website, leading to claims the disclosure makes it possible…
Jihadist leaks addresses of Army Sgt. Dillard Johnson, Navy SEAL Rob O’Neill
Melissa Chan reports: An ISIS fanatic claims to have leaked the home address of one of America’s deadliest soldiers, urging lone-wolf terrorists in the U.S. to take him down. The British jihadi purportedly released the personal details of Army Sgt. 1st Class Dillard Johnson through her Twitter account under the name Umm Hussain Britaniya. It’s…