Tim Tooten reports: More than 2,500 of Baltimore County Public School system employees have had their personal information compromised and the district said it’s their fault. It follows a number of technology issues the school system has been dealing with since November. School officials said they learned about the technology failure in January, but letters…
Category: Exposure
Florissant dialysis center faces class-action lawsuit after I-Team investigates
PJ Randhawa reports: A popular Florissant dialysis clinic is the subject of a class-action lawsuit after an I-Team report uncovered the facility “lost” the medical records of up to 60 patients. In July, the I-Team found dozens of private medical records for DaVita Dialysis patients dumped behind an abandoned building in north St. Louis. We…
De: Another data breach in COVID-19 test centers
Jana Ballweber reports (translation) After glaring security deficiencies in the IT of Corona test centers became known in March, thousands of test results including personal data could be found online again. Security experts from the “Zerforschung” group managed to view the names, addresses, dates of birth, telephone numbers, email addresses and test results of over 14,000 people tested from centers in Hamburg,…
Br: Leak exposes 1.7 TB of customer data from Brazilian fintech iugu
Felipe Demartini reports (translation): A serious security breach exposed the information of, it is believed, all customers of the iugu services company, which operates in Brazil through financial management and automation systems. Users’ personal, banking and transaction data was available on an unprotected server for at least an hour. The discovery is by security expert…
Follow-up: Adventist Health Physician’s Network fined $40,000 for 2018 breach incident
Jeremy Childs reports: Adventist Health Physician’s Network, a hospital in Simi Valley, was fined $40,000 as part of a civil privacy settlement this week, according to the Ventura County District Attorney’s Office. The settlement stems from an incident in October 2018 when private medical files were found inside a storage unit in Simi Valley. The…
No password required: Mobile carrier exposes data for millions of accounts
Dan Goodin reports: Q Link Wireless, a provider of low-cost mobile phone and data services to 2 million US-based customers, has been making sensitive account data available to anyone who knows a valid phone number on the carrier’s network, an analysis of the company’s account management app shows. Read more on The Register. Opinion: I…