Zocdoc, an online booking system for dental or medical appointments, is first notifying patients almost one year after they learned programming errors enabled providers to access patient information they should not have had access to. In June, 2015, Zocdoc reportedly learned that a programming error had allowed some past or current practice staff members to access…
Category: Business Sector
Intermedix data breach class action case dismissed
Linn Foster Freedman has an update to the Intermedix data breach litigation filed last year: On May 3, 2016, the parties to the suit agreed to dismiss the case with prejudice with no payment of attorneys’ fees, costs or other expenses to the other party, which means that each party is to bear its own costs….
AU: CabCharge Data Exposed, Still Waiting For A Response Much Like Their Customers!
RiskBased Security reports that although it notified CabCharge of a misconfigured database leaking customer information and CabCharge seems to have taken steps to secure the data, CabCharge has neither acknowledged the notification nor notified customers: …. Our lead researcher quickly contacted CabCharge.com.au to alert them to the issue. After a few hours of checking on the status of…
Talentbuddy.co / Talentguide.co Database Exposed, Company Reacts Swiftly
Another day, another misconfigured MongoDB database installation. This one, uncovered by RiskBased Security, involved Udemy‘s Talentbuddy.co. RBS writes: In total, there have been 38,791 users accounts from the talentbuddy.co website and a further 22,761 users from the Talentguide.co website exposed, with usernames, email addresses, passwords, Linkedin profile information, and other site-related information such as registration dates,…
Nulled.io crime forum breach could cause a world of pain for members
Dan Goodin reports: A website that openly facilitated the brokering of compromised passwords, stolen bitcoins, and other sensitive data has been hacked, exposing login data, IP addresses, e-mail addresses, purchase histories, and private messages for some 500,000 members. Nulled.io, a hacker forum that used the tagline “expect the unexpected,” was compromised earlier this month in…
Nostalgic for a backup drive breach? Here it is…
The days of backup drives with unencrypted information being stolen from unattended vehicles is not totally a thing of the past. On April 26, New Hampshire Distributors, LLC notified the state attorney general’s office that a stolen backup drive contained information on 924 New Hampshire residents. The total number of individuals affected was not disclosed. It’s…