After Minnesota-based CHS Inc. mailed PATR-1099 forms to its patrons in mid-November, they received a call from one recipient alerting them that both the name and Social Security Number was visible through the window in unhyphenated form. After investigating, CHS determined that SSN were exposed in at least some cases. In a letter to the…
Category: Exposure
CO: Medical marijuana records found near Dumpster (update 2)
Christina Dickinson and Dave Delozier report: It was the last thing Harold Morton expected to find while taking some recyclables out to the alley behind his home. When he walked past a Dumpster, he saw it in a cardboard box: a thick blue binder. “I picked the book up and I opened it and right…
(follow-up) Ca: Defence confirms breach of medical information of Forces personnel
Alison Auld of The Canadian Press provides an update to a breach previously mentioned on this blog: Defence officials are reviewing the medical records of several Forces personnel after an investigation showed their personal health information was mistakenly placed in a veteran’s military medical file. Maj. Cindy Tessier said the file belonging to navy veteran Wayne…
(update) JP: MPD admits antiterror data leak
Japan has had a number of embarrassing data breaches involving the Winny file-sharing program. Will this turn out to be another one? The Metropolitan Police Department on Friday effectively admitted that some of its internal documents on investigations into international terrorism were leaked onto the Internet in late October. […] The MPD has been questioning…
(follow-up) Compensation confusion over Santander’s statement fiasco
Victoria Bischoff reports: Santander yesterday admitted sending the wrong bank statements containing other people’s personal details to thousands and thousands of customers. We explain if these customers will be entitled to compensation and if they are now at more risk of fraud? Will I get compensation from Santander? Early misleading reports indicate that tens of…
ICO statement on alleged data breach involving Santander
An ICO spokesperson said: “We have recently been informed of a data breach involving Santander. We will be making enquiries into the circumstances of the apparent breach of the Data Protection Act before deciding what action, if any, needs to be taken. “Under the Data Protection Act, organisations that process personal information have an obligation…