The Hacker News reports: A critical, but easily exploitable personal information disclosure vulnerability has been discovered in the widely popular online marketplace AliExpress website that affects its millions of users worldwide.. […] Amitay Dan, an Israeli application security researcher working at Cybermoon.cc, reported the vulnerability to The Hacker News after providing full disclosure of the flaw to the AliExpress…
Category: Exposure
AU: AFP mistakenly names two people involved in criminal investigation
Paul Farrell reports: The Australian federal police have inadvertently disclosed the identity of two people involved in a criminal investigation, the second accidental publication of material about investigations this year. The identities of the two were disclosed in documents released by the AFP under freedom of information laws. Read more on The Guardian.
IE: Teachers’ data breached on O2 web portal
Mark Tighe reports: The Office of the Data Protection Commissioner (DPC) has begun an investigation into a data breach affecting more than 1,000 teachers who signed up for a phone scheme offered by O2. Last week a member of the scheme, who wishes to remain anonymous, contacted The Sunday Times to express concern that O2’s web…
I think we’re running out of hashtags for how bad the Sony #databreach was (Update1)
It just gets more and more embarrassing for Sony. Here are just a few stories from today’s news: It Gets Worse: The Newest Sony Data Breach Exposes Thousands Of Passwords Sony Pictures hackers stole 47,000 social security numbers, including Sly Stallone’s SONY PICTURES HACK SPREADS TO DELOITTE: THOUSANDS OF AUDIT FIRM’S SALARIES ARE LEAKED Let the Congressional hearings…
Ca: RCMP accidentally sent woman’s assault complaint to media
Bruce Campion-Smith reports: In a serious breach of privacy, the RCMP accidentally sent details of a woman’s complaint of a sexual assault to a Toronto Star reporter. The woman’s note to the RCMP details an attack that happened decades ago but is potentially related to an ongoing police investigation. It was inadvertently forwarded to the…
New Hampshire Employment Security mailing gaffe discloses 2,700 benefits recipients’ info
Kathryn Marchocki reports that the New Hampshire Employment Security experienced a “software glitch” that resulted in 2,700 people collecting unemployment benefits having their personal information – including SSN – accidentally mailed to employers for whom they never worked. You can read more on The Nashua Telegraph if you have a subscription. I do not see any notice up on…