Hayley Robinson reports: Swale council has been forced to apologise and may face investigation after the email addresses of about 2,500 residents were sent out to the public. A blunder meant they were inadvertently shared on a message promoting an e-billing system. The emails were sent out in batches of 10, containing about 250 contact…
Category: Exposure
VA: Richmond school officials investigate security breach involving student files
Zachary Reid reports: Richmond school officials are conducting an intensive internal investigation of student records after a School Board member shared confidential information about at least 20 students with a vendor that provides mental health services. Tichi L. Pinkney Eppes, of the 9th District, publicly apologized a day after her colleagues were told about the…
Huge Data Leak at Largest U.S. Bond Insurer
Brian Krebs writes: On Monday, KrebsOnSecurity notified the Municipal Bond Insurance Association — the nation’s largest bond insurer — that a misconfiguration in a company Web server had exposed countless customer account numbers, balances and other sensitive data. Much of the information had been indexed by search engines, including a page listing administrative credentials that attackers could use to…
UK: Housing association publishes thousands of tenants’ private details in online data breach
Max Salisbury reports: A Midlands-based housing association has been slammed after it somehow managed to publish the private and intimate details of thousands of its tenants online. South Staffordshire Housing Association (SSHA) published residents’ names, telephone numbers, addresses, family affairs and health details on the ‘Contact Us’ page of its website. Though the private data…
Purdue Calumet possibly hacked
Carmen McCollum reports: A student data system at Purdue University Calumet may have been hacked. Purdue Calumet spokesman Wes Lukoshus said the university received information Tuesday night that one of its information systems that includes student information was vulnerable. It was someone from the West Lafayette campus who identified the vulnerability of one of Purdue…
UK: Northmavine parents lodge SIC privacy complaint
Neil Riddell reports: Parents in Northmavine have lodged a formal complaint about what they describe as a “blatant breach” of data protection during a school closure consultation, and are calling on Shetland Islands Council to “ensure our privacy is taken seriously”. Last week the local authority issued an apology after personal details relating to “a small number of…