If at first you don’t succeed, persist. And blog. Jon Baines writes: Imagine, if you will, a public authority which decides to publish as Open Data a spreadsheet of 6000 individual records of adults receiving social services support. Each row tells us an individual service user’s client group (e.g. “dementia” or “learning disability”), age range (18-64, 65-84, 84 and over),…
Category: Exposure
GA: Brooklet officer fired after security, identity breach
Holli Deal Saxon reports: A former Brooklet police officer fired for sharing information about candidates for the town’s police chief position said he was terminated unfairly and improperly, but the Brooklet city councilman who supervises the police department says the officer was fired for breaking privacy laws. Former police Sgt. Jonathan McGahee was terminated Dec….
‘Burglar’s shopping list’ security flaw fixed
Dave Lee reports: An online service recommended by most of the UK’s police forces has fixed a privacy flaw after being alerted by a security expert. Immobilise allows members of the public to add records to the National Property Register, detailing valuables in their homes. But security consultant Paul Moore discovered a flaw that made it…
Three million Moonpig accounts exposed by flaw
Darren Pauli reports: Custom mugs and tat outfit Moonpig has a signficant flaw that exposes personal records and partial credit card details for some three million customer (sic), almost 18 months after it was reported. The failure, discovered and privately reported by developer Paul Price, meant every account and the names, birth dates, and email and street…
Out of site, but not off the dark web
According to Belsec Blog, Rex Mundi republished “thousands of Belgian data” on Tor. While a few of the hacks the blog refers to have been previously mentioned on DataBreaches.net, some of them are news to me:
Tallahassee Police Release Reporter’s Personal Info In Massive Records Request
Ashley Lopez reports: The Tallahassee Police Department recently released hundreds of police reports involving Florida State University athletes—as well as the personal information of the reporter who requested the records. On Christmas Eve, according to Poynter, the non-profit journalism education center, TPD publicly released ESPN reporter Paula Lavigne’s original request – which included her cell phone…