There is an update to a data leak incident discovered and reported by independent researcher Jelle Ursem and DataBreaches.net in April 2021. Top Class Actions reports that Med-Data, a business associate that handles health insurance claims data, has agreed to pay $7 million to resolve claims that one of its employees publicly posted patient information on…
Category: Exposure
What Austin ISD said led to student information being released to non-guardians
Johann Castro reports: Some Austin ISD students mistakenly had their records released to people who weren’t their parents or legal guardians. According to a report from KVUE’s media partners at the Austin American-Statesman, documents revealed that a special education database vendor mistakenly released the private information for about 160 Austin students in December. The report…
Over 2,300,000 records of Family Entertainment Business Were Exposed in Data breach
Jeremiah Fowler reports: The publicly exposed database contained 2,363,222 documents in.PDF and.PNG formats with a total size of 92.3 GB. These included reservations, injury waivers, and receipts with partial credit card numbers and transaction details. Additionally, there were digital gift cards with no expiration date, source images for websites and templates. I immediately sent a…
Quest Diagnostics pays $5M after mixing patient medical data with hazardous waste
Jessica Lyons reports: Quest Diagnostics has agreed to pay almost $5 million to settle allegations it illegally dumped protected health information – and hazardous waste – at its facilities across California. This sum won’t hurt at all for the corporation, one of the largest clinical medical lab networks in the US. In all, Quest is…
U.S. Internet Leaked Years of Internal, Customer Emails
Brian Krebs reports: The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of…
New Jersey law enforcement officers sue 118 data brokers for not removing personal info
Suzanne Smalley reports: Over the course of the last week, 118 class action lawsuits were filed against data brokers who allegedly failed to respond to requests from about 20,000 New Jersey law enforcement personnel asking to remove their personal information from the internet. New Jersey law prohibits the disclosure of home addresses and unpublished telephone…