An investigation has found the University of Sydney failed in its obligations by not securing students’ private details on its website. A section of the university’s website was shut down in January after it was found sensitive information could be obtained by entering a student’s identification number. No password was required to access the name…
Category: Exposure
Texas Official Must Talk About Data Leaks
David Lee reports: A state judge ordered the Texas Comptroller of Public Accounts to comply with a request for a deposition on the leak of personal information of more than 3.5 million people. Comptroller Susan Combs disclosed in April that the personal information of 3.5 million state employees and former employees had been stored on…
Groupon leaks entire Indian user database
Patrick Gray writes: The entire user database of Groupon’s Indian subsidiary Sosasta.com was accidentally published to the Internet and indexed by Google. The database includes the e-mail addresses and clear-text passwords of the site’s 300,000 users. It was discovered by Australian security consultant Daniel Grzelak as he searched for publicly accessible databases containing e-mail address…
Man’s ‘horror’ at NHS web privacy leak
Rhianne Pope reports: A jobseeker has said he is “horrified” after logging on to an NHS job site and seeing other people’s data. The 62-year-old from Bicester, who wished to remain anonymous, said he visited Jobs.nhs.uk to look for a new maintenance job. But after registering his name on the site last Monday, he realised…
RxAmerica and Accendo Insurance notify 175,000 Medicare beneficiaries that mailing error exposed their medication name, date of birth, and member ID
RxAmerica and Accendo Insurance Company, providers of drug benefits to eligible beneficiaries under the Medicare Part D program, issued the following statement today regarding a recent patient information issue: “RxAmerica and Accendo Insurance Company have notified Medicare Part D beneficiaries enrolled in the company’s Prescription Drug Plans that some of their personal information may have…
Canada official: Staples resold hard drives with customer data
Galen Moore reports: …. According to Canada’s privacy commissioner, Jennifer Stoddart, the breaches affected laptop computers and flash drives, and compromised sensitive information including Social Insurance Numbers, and health card and passport numbers; academic transcripts; banking information and tax records. An audit conducted by Stoddard’s office examined 149 data storage devices marked for resale, and…