It’s the weekend, but breaches don’t take a break. Some breach or leak disclosures that I spotted in reading the news today: Ballad Health in Tennessee has disclosed a breach. As reported by WCYB, who also includes the full notice from Ballad, on or about January 13, Ballad detected unusual activity in an employee’s email…
Category: Exposure
Thousands Of Indians Exposed In Data Breach Affecting Money Lending App CashMama
Bharat Sharma reports: Personal information of hundreds of thousands of Indians was recently leaked, revealing details such as full names, dates of birth, home addresses, national IDs, and much more. The data breach was discovered by Safety Detectives and affected users of CashMama, a now-defunct money lending platform based in India. CashMama’s S3 bucket (a…
55,000 there, 190,000 there, 1.8 million there, and the breaches roll on…
Taylor Regional Hospital in Kentucky recently notified 190,209 patients of breach that they identified in January. An investigation determined that an unauthorized person had gained access to their network between November 2, 2021 and January 19, 2022, and obtained certain files from their systems containing patients’ names, and one or more of the following: address,…
Hong Kong electoral office apologizes after employee accidentally sends details of 15,000 voters to random email
Kathleen Magramo reports: Hong Kong’s electoral office has apologised after an employee failed to follow guidelines and sent the personal details of about 15,000 voters to a random email address. The Registration and Electoral Office (REO) on Friday said the staff member intended to send files containing electors’ particulars to her personal email address on…
Japanese medical online consultation site leaking consumer-submitted images of symptoms
After multiple unsuccessful attempts to get a popular Japanese medical online consultation site to secure a misconfigured bucket, researchers at SafetyDetectives have decided to publicly disclose the leak. Doctors Me provides customers with on-demand access to professional medical advice. People can sign up for a monthly unlimited access plan (for less than $3.00 per month)…
A security lapse exposed India’s CISF personnel files and health records
Zack Whittaker reports: Internal documents, officer health records, and personnel files belonging to India’s Central Industrial Security Force were spilling online because of a data security lapse. A security researcher in India, who asked not to be named for fear of retaliation from the Indian government, found a database packed with network logs generated by…