The Express and Star reports that St Peter’s Collegiate Church of England School in Wolverhampton sent out a document including the names, addresses and dates of birth of 88 other pupils to a mother who had requested details about her child. School bosses have described the incident as ‘an administrative error’ and have since launched…
Category: Exposure
UK: ICO orders Hartlepool based NHS Trust to review data protection
From the Information Commissioner’s Office, this enforcement notice: North Tees and Hartlepool NHS Foundation Trust has been ordered by the ICO to review its data protection policy after a file containing sensitive patient information was found at a bus stop. It was one of a number of incidents over the last year which resulted in data being…
MX: Vivanuncios user data stolen by hacker (nah – scraped by competitor)
Update/Clarification: eBay reached out to DataBreaches.net to ask that we make clear that the breach did not occur after eBay purchased the site, but rather, it occurred while it was still on the W3 system – before eBay bought it. eBay also notes that “we launched an entirely new platform on January 15, 2015 when the acquisition was…
UK: Harrodian School pupils’ personal data shared online in “serious breach” of data protection
Laura Proto reports: The personal details of students at a fee-paying independent school have been shared online in a “serious breach” of data protection that could fall foul of the law. The Information Commissioner’s Office is investigating after unique pupil numbers (UPN), full names, year groups and houses of 62 students at Harrodian School, which…
AU: Immigration removals delayed pending assessment of data breach
Patrick Gunning of King & Wood Mallesons writes: The Immigration department’s well publicised 2014 data security breach continues to cause difficulties for the Department. In late January and mid February the courts have issued interlocutory injunctions preventing the removal from Australia of certain asylum seekers pending the outcome of administrative law challenges to decisions to refuse…
Vulnerability Exposes Thousands of GoPRO Users’ Wireless Passwords
Wang Wei reports: GoPro, the popular wearable high-definition camera manufacturer, has vulnerability (sic) in its official website that exposes usernames and passwords of thousand of its customers’ wireless network. Read more on The Hacker News. The vulnerability was reported by Ilya Chernyakov, who reports that US CERT contacted GoPro about the vulnerability he discovered.