Cianan Brennan reports: The Data Protection Commission (DPC) has handed down a €65,000 fine to Cork University Maternity Hospital (CUMH) after the personal data of 78 of its patients was discovered disposed of in a public recycling facility elsewhere in the county. The complaint was first raised with the DPC in June 2019 after a…
Category: Exposure
Configuration snafu exposes passwords for two million marijuana growers
Catalin Cimpanu reports: GrowDiaries, an online community where marijuana growers can blog about their plants and interact with other farmers, has suffered a security breach in September this year. The breach occurred after the company left two Kibana apps exposed on the internet without administrative passwords. Read more on ZDNet. h/t, @Chum1ng0
ShopRite, Wakefern will pay $235k fine, improve security after massive data breach, AG says
Sophie Nieto-Munoz reports: ShopRite and its parent company, Wakefern Food Corporation, will pay $235,000 after two supermarkets threw away electronic devices exposing thousands of customers’ medical information, Attorney General Gurbir Grewal announced Monday. The company will also have to improve its data security after they failed to protect the information of more than 9,700 pharmaceutical customers…
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
Home Depot Confirms Data Breach in Order Confirmation SNAFU
Tara Seals reports: Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. After customers began reporting that they had received hundreds of emails from the home-improvement giant, each containing an order confirmation for a stranger, the company confirmed the…
Dozens of patient records dumped in St. Louis industrial area
Erin Richey reports that someone found boxes of patient records belonging to DaVita Florissant Dialysis on West Florissant Avenue. “Found names, Social Security numbers, addresses, lab reports, entire medical history of people and personal information,” he said. “ Read more on KSDK. According to the report, because Missouri does not regulate dialysis clinics, the state department…