In February, we learned of a horrific privacy breach involving almost 10,000 asylum seekers. This breach is on my personal Top 10 Worst Breaches of 2014 because of the risk of harm to those exposed. A detention file created by Australia’s Department of Immigration and Border Protection (DIBP) accidentally exposed detainees’ personal details and was subsequently downloaded in about 16…
Category: Exposure
In: Massive data breach at CIDCO’s website
Yogesh Sadhwani reports: The personal records of about 85,000 applicants to the City and Industrial Development Corporation‘s (CIDCO) housing scheme have inadvertently been made public by the government establishment. Details such as residential address, mobile number, Permanent Account Number (PAN), bank account number, Indian Financial System Code (IFSC) information related to their bank accounts and…
UK: Employee at Bradford-based Morrisons faces fraud charge over staff data theft
There’s an update to a breach reported earlier this year. Telegraph & Argus reports: A Morrisons employee has been charged with fraud after an investigation into the theft of payroll data from the supermarket firm relating to thousands of members of staff. Andrew Skelton has also been charged with an offence under the Computer Misuse Act and…
Ca: Edmonton Police Service apologizes for mailing staff info to man in U.S.
Julia Parrish reports: The Edmonton Police Service has apologized for a security breach that saw personal information of some staff and volunteers sent to a man in the United States. David Henderson, a former CBS News correspondent, who now works as a crisis and strategic communications advisor, told CTV News he’s trying to draw attention to…
Privacy breach at U. of Toronto
Alex McKeen reports: On October 29, some students received e-mails from the University of Toronto enrollment services indicating that they were awarded funding through University of Toronto Advanced Planning for Students (UTAPS) only to find that they had also been sent 179 files containing sensitive information that was not theirs. […] The 179 files that…
Email addresses of 4,000 New Brunswickers released by Skillsoft in cc: gaffe
CBC News reports that Skillsoft, a company that develops and manages professional courses the government offers online through SkillsNB, exposed more than 4,000 New Brunswickers’ email addresses by accidentally using the cc: field in an email, instead of the bcc: field.