Adam Wright reports that more than a dozen boxes of files containing Social Security numbers, driver’s license numbers, and credit card information were found in a dumpster behind a warehouse in Lee County. Schaefer says the files in the boxes belong to the company Coral Palm Auto Sales in Fort Myers. The business in question…
Category: Exposure
Florida Department of State exposes non-confidential voter information (updated)
Update: The Florida Department of State issued a statement on March 31 confirming the breach. That statement appears elsewhere on this site. Under the language of their statute, addresses are not considered “confidential” information, and the state has asked DataBreaches.net to make clear that this did not involve confidential information, as “confidential” is defined by…
Personal details of world leaders accidentally revealed by G20 organizers
And once again, a freedom of information request uncovers a breach. Paul Farrell reports: The personal details of world leaders at the last G20 summit were accidentally disclosed by the Australian immigration department, which did not consider it necessary to inform those world leaders of the privacy breach. The Guardian can reveal an employee of the agency…
UK: Serious Fraud Office fined after “astounding” data protection breach
The Information Commissioner’s Office (ICO) has fined the Serious Fraud Office £180,000 after a witness in a serious fraud, bribery and corruption investigation was mistakenly sent evidence relating to 64 other people involved in the case. The Serious Fraud Office’s investigation focused on allegations that senior executives at BAE Systems had received payments, including two properties worth…
MD: Mailing error exposes 350 patients’ bills to other patients
Here’s one you won’t see on HHS’s public breach tool, because it’s less than 500 patients. Harford Surgical Associates in Bel Air, Maryland notified the Maryland Attorney General’s Office that due to a mailing error on October 16, 2014, patients received up to three other patients’ billing statements. The statements included the patients’ names, addresses, telephone…
Optus rapped for three privacy breaches
As you read the following, keep in mind that Australia has just required ISPs to retain non-content data for two years. Josh Taylor reports: Optus has committed to undertake an independent review of its information security systems after Australian Privacy Commissioner Timothy Pilgrim investigated three separate security incidents. The first incident related to the company’s…