Ben Grubb reports: A security flaw exposed up to 500 Dodo Power & Gas customer statements on its website on Friday. Details included customer names, addresses, power usage details and account numbers. The flaw was revealed when a Dodo customer contacted Fairfax to say she was able to change the randomly generated eight-digit number of…
Category: Exposure
Student privacy breached in Delta School District
Sheila Reynolds reports: The Delta School District is assuring parents their children’s personal information is secure after student data was unintentionally accessed online last week. A parent in the district was using the Parent Connect system – which allows parents to access information about their own child – and ended up being able to see…
Kaiser Permanente notifies employees after e-mail error exposes their SSN to unauthorized individual
On October 29, Kaiser Permanente began notifying employees of a breach that occurred August 24th when their names, Social Security numbers, and other information were mistakenly e-mailed to an individual not authorized to receive such information. From their letter: [First Name] [Last Name] [Street Address] [City], [State], [ZIP code] Dear [First Name], We are writing…
Salinas Valley State Prison staff notified of intranet breach
The California Department of Corrections and Rehabilitation has been notifying employees of a data breach affecting staff at Salinas Valley State Prison. From their letter describing the intranet exposure: We are writing to you because of an information security incident at Salinas Valley State Prison (SVSP) involving your personal information. On September 26, 2012 it was…
Rental leases with personal information found outside apartment complex
Keke Collins reports from South Carolina: Pictures taken in July show boxes of old leasing agreements from Cypress Cove Apartments in West Ashley tossed outside the complex’s storage unit area. The papers, which were discovered this past July, were full of social security numbers, credit reports, W-2 forms, addresses and phone numbers from previous residents….
Breach on Cornell Computer Exposes Personal Data for Five Days
Akane Otani reports: The personal information of up to 2,000 people was exposed to the public for five days on a computer in Cornell’s athletics department, a University administrator confirmed Thursday. Donald Sevey, director of information systems, said that the University discovered that a file server containing “confidential data” about thousands of people was accessible…