Melissa Sanchez reports: CPS mistakenly shared the names, home addresses, phone numbers, disability status and other personal information of 4,000 students to five vendors seeking to do business with the district. After learning of the unusual data breach, CPS officials say they took steps to remedy their actions. These include instructing the companies to dispose…
Category: Exposure
Hacker data dumps scrape to make huge grey marketing database
Darren Pauli reports: Former password collector Steve Thomas plans to tear up the contact broker market by offering a database of 30 million names for free, all built on data sourced by scraping the web. The former PwnedList founder, and now SalesMaple CEO, says the database will soon to balloon to almost 100 million records….
IL: Boyd Hospital failed to remove stored patient records before building sold
Paging HHS to Aisle 4…. Samantha McDaniel-Ogletree reports: What started as a routine purchase of a surplus county building has resulted in the discovery of thousands of medical records and allegations of theft. Jerseyville resident Edward Crone bought the property at 505 S. Main St. from the county on March 19 — more than a…
How Evil Hackers Can Cause Chaos At Horribly Vulnerable Car Parks
Thomas Fox-Brewster reports: There’s been growing interest in car hacking in recent years, inspired by researchers showing off exploits in real vehicles, tinkering with Teslas, and uncovering glaring vulnerabilities in third party kit. But criminal hackers could vex drivers in other ways, such as compromising internet-connected, easily hackable parking management systems, according to Spanish researcher Jose Guasch. At the Hack…
How to get yourself bad PR, Capital One edition
Betty Lin-Fisher reports: Louise Gunther of Fairlawn called recently to express her extreme frustration at how, despite six weeks of efforts to correct the problem, she was continuing to get what she felt was private information sent by email for someone else’s Capital One credit card. Gunther regularly checks the email for her domestic partner…
Meru Cabs was exposing customer data
I had missed this one, but DataBreachToday has a write-up about the exposure of Meru Cabs customer data due to logs from its mobile app not being secured. The exposed data in the logs “included customers’ personally identifiable information, including mobile numbers, email addresses, pickup and drop locations, masked credit-card numbers, payment notification logs, Meru booking…