And this, kids, is what happens when you re-use login credentials across sites. Posted on Moonpig’s site on July 26th: Late on Friday, 24 July, we became aware of a security issue whereby a number of Moonpig customer email addresses, account balance and passwords had been illegally published. As a precautionary measure, we promptly closed our…
Category: Exposure
Credit union email gaffe exposes employee information
Add Scient Federal Credit Union to the list of those exposing employee information due to an email error. The error occurred on July 14, and resulted in an unspecified number of employees’ details being sent to a prospective employee. The information, which was sent by secure email, included name, Social Security number, address, amount or…
A simple developer error is exposing private information on thousands of websites
Owen Williams reports: Git is a developer’s best friend… except when it’s not used properly and exposes a site’s security. The tool is used for version control. It tracks changes to code over time, so that multiple developers can work together efficiently and roll back if they need to. […] As it tracks your changes over time, it…
Ca: File breach at electronic spy agency prompts mandatory privacy training
Jim Bronskill of The Canadian Press reports: Canada’s electronic spy agency introduced mandatory privacy awareness training for all employees in March following an internal breach involving personal information. When Greta Bossenmaier became chief of the Communications Security Establishment in February, the ultra-secret eavesdropping outfit was under intense public scrutiny over alleged spying on citizens. But less than…
Hackers attack Planned Parenthood, release some employee data
William Turton reports: Planned Parenthood has been hacked. Late Sunday night, a group of hackers who oppose the healthcare nonprofit’s abortion practices released Planned Parenthood’s website databases as well as names and email addresses of the organization’s employees. The attack on Planned Parenthood follows a storm of controversy over the organization. Anti-abortion activists sparked the uproar…
Anonymous hacks census.gov; leaks non-sensitive info
Here’s another breach from last week that was sitting in the drafts folder because, well, I’m old, I forget. Census.gov was hacked by Anonymous, whose claimed motivation was “#TPP #TTIP” (Trans-Pacific Partnership, Transatlantic Trade and Investment Partnership). Ali Raza reports: A hacktivist group, which refers to itself as Anonymous, has claimed that the United States Census Bureau…