Matthew Steffy reports: Legal documents from a defunct law firm bearing personal information including Social Security numbers and dates of birth on thousands of documents surfaced in an open trash bin in downtown Warren this week. The documents include names, addresses, spousal and child information, Social Security numbers, dates of birth and income earnings. The…
Category: Exposure
For Hulu, Facebook Connect becomes a security headache
Declan McCullagh reports: Hulu acknowledged this afternoon that an attempt to integrate itself with Facebook didn’t go exactly as planned. Far from aiding the “entire social experience,” which the video streaming service had promised in its announcement earlier in the day, the attempted integration allowed some Hulu users to access other users’ accounts. In a followup…
Arizona state police confirm 2nd hack on officers’ email
Howard Fischer reports: A new computer attack Wednesday on the Department of Public Safety hit only officers’ outside and personal emails and, unlike last week, not the agency’s own computers, DPS Capt. Steve Harrison said. He said it appears the two incidents are linked, with those who broke into the DPS computers last week stealing…
(follow-up) Sydney Uni ‘breached student privacy’
An investigation has found the University of Sydney failed in its obligations by not securing students’ private details on its website. A section of the university’s website was shut down in January after it was found sensitive information could be obtained by entering a student’s identification number. No password was required to access the name…
Texas Official Must Talk About Data Leaks
David Lee reports: A state judge ordered the Texas Comptroller of Public Accounts to comply with a request for a deposition on the leak of personal information of more than 3.5 million people. Comptroller Susan Combs disclosed in April that the personal information of 3.5 million state employees and former employees had been stored on…
Groupon leaks entire Indian user database
Patrick Gray writes: The entire user database of Groupon’s Indian subsidiary Sosasta.com was accidentally published to the Internet and indexed by Google. The database includes the e-mail addresses and clear-text passwords of the site’s 300,000 users. It was discovered by Australian security consultant Daniel Grzelak as he searched for publicly accessible databases containing e-mail address…