Ray Wert reports on Jalopnik that Bank of America’s online banking system experienced a security breach or glitch that enabled logged in users to see other people’s accounts: Someone very close to me called moments ago and told me that when she logged into her Bank of America account earlier this evening she saw, rather…
Category: Exposure
UK: Around 10,000 CRB background checks land in the wrong inbox
Gwent Police is taking remedial action after the Information Commissioner’s Office (ICO) found it in breach of the Data Protection Act for accidentally emailing results of Criminal Reference Bureau (CRB) checks performed by the force to a member of the public. An email containing a spreadsheet of the results of around 10,000 CRB enquiries was…
UK: Labour forum leaks email addresses
John Leyden reports: Basic design flaws on a Labour party members forum exposed the email addresses of users to harvesting. Surfers who register through the site http://members.labour.org.uk were invited to confirm their membership, and activate their account, by clicking on the link in an email sent to a specified account. The email follows the form…
Thousands of Medi-Cal records of San Franciscans breached
Brent Begin reports: About 2,400 Medi-Cal recipients in San Francisco had their names, Social Security numbers and other identifying information breached as part of an employee dispute at Human Services Agency of San Francisco, officials said. A former city employee, considering legal action against The City after being fired from the agency that disperses welfare…
AU: CityCycle in privacy breach
Cameron Atfield reports: Brisbane’s CityCycle bike hire scheme has been embroiled in a massive privacy breach, with the email addresses of all its subscribers distributed in an email this afternoon. The addresses of 1306 CityCycle users were all included in the “to” field of an email sent to subscribers at 5.12pm today. The email was…
Minnesota Education Department improperly releases transcripts from online charter school
Mila Koumpilova reports: The Minnesota Department of Education improperly released the transcripts of 20 students at the online BlueSky Charter School in November, the department acknowledged Friday. The department uncovered the privacy breach this week while processing a new data request regarding the school, spokeswoman Charlene Briner said. Commissioner Brenda Cassellius, who took over the…