Darren Pauli reports: Shodan hacker John Matherly says system administrators have exposed some 595.2 terabytes of data by using poorly-configured or un-patched versions of the popular MongoDB database. eBay, Foursquare, and The New York Times are some of the prominent users of the open source MongoDB which is the most popular NoSQL database. Matherly says the near 30,000 databases…
Category: Exposure
Army National Guard Infosec Failure Exposed 850K Service Members’ Info
Earlier this month, this site noted a security failure involving an Army National Guard data transfer. Today, Tara Seals reports that the number impacted is 850,000: The Army National Guard has exposed the personal information of more than 850,000 current and former members, by improperly handling a data transfer. The servicemen and women may have…
Ca: Victoria Police investigating after employee records tossed in cardboard bin
CTV reports: Police are investigating a possible privacy breach after a Victoria sporting goods business tossed boxes upon boxes of personal information in a downtown cardboard recycling bin. Six boxes, which contained sensitive private information including social insurance numbers and bank and health records, were discovered by a CTV employee in the bin behind Sports…
Users’ data compromised after technical glitch at Home Office contractor
Saeed Kamali Dehghan reports: A contractor that provides visa services on behalf of governments around the world, including the UK, has suffered a serious technical glitch that allowed personal data to be compromised. VFS Global, which acts for around 45 governments, released online application forms this week that used sequential reference numbers, allowing users to…
UK: Jeremy Hunt in hot water after ‘breaching patient confidentiality’ by posting hospital visit picture on Twitter with board of names on it
Sam Matthew and Lydia Willgress report: Health Secretary Jeremy Hunt has been accused of breaching patient confidentiality by tweeting a photo to his 70,000 followers from a hospital visit. He came under fire after the image of himself with medics at University College Hospital in London captured a board listing patients on the ward in…
AU: Private files available to inmates in prison computer security breach
Rebekah Cavanagh reports: Corrections Victoria is investigating after private files of prisoners became available to a jail’s inmates in an alarming computer security breach. The breach has raised concerns that the information — including some prisoners’ bank details and names and addresses of family contacts — could be used to stand over or threaten inmates…