Back in October 2010, I noted a breach involving managed security services provider Omniquad. Omniquad acknowledged the breach that involved helpdesk tickets leaking online, but the firm’s managing director, Daniel Sobstel, subsequently claimed that Webroot reseller Infosec Technologies started contacting his customers and passing on misleading information about the size of the data breach. Now…
Category: Exposure
Irish credit union gaffe exposed almost 5,000 customers’ loan information online
Ah, this report from December 24th slipped by me. Cormac Murphy reports: In a major blunder, the borrowing amounts, loan durations and arrears of 4,971 members of Tullamore Credit Union were made public. The private database became freely available via the lender’s website last week and remained accessible for at least two days, it is…
Washington Dept. Social & Health Services sends sensitive info to wrong addresses
Christine Claridge reports: The personal information of up to 7,000 households receiving assistance from the state Department of Social and Health Services (DSHS) was sent in error to incorrect or old addresses, according the state Economic Services Administration (ESA). The administration confirmed in a news statement released Thursday that the private information of at least…
NZAF apologises for email privacy error
The New Zealand AIDS Foundation has apologised after it accidentally shared members’ email addresses in its Christmas e-cards. “The New Zealand AIDS Foundation (NZAF) genuinely regrets that we made a human error when sending out our Christmas e-cards and mistakenly disclosed our member’s email addresses by failing to BCC all the recipients,” Executive Director Shaun…
Pointer: Lanap and Implant Center breach
For those of you who haven’t caught on that I have a slew of other breach reports over on PHIprivacy.net, I thought I’d give you a pointer to a really horrific breach I’ve been covering over there this week. It involves 11,000 patients’ data (yes, including SSN and DOB) winding up on a torrent site…
University of North Carolina investigates data breach, notifies affected people
Carolina officials are investigating a data breach that risked unauthorized online access to personal information concerning some current and former employees, vendors and students. It is believed that more than 6,000 people are affected. On Nov. 11, an information technology manager in the Division of Finance and Administration was informed that some electronic files managed…