First someone left our voter registration details exposed to the world, but those were “just public records,” some argued. Now a second misconfigured database has been uncovered by Chris Vickery. This one, however, not only includes some states’ voter lists, but it also includes 19 million profiles with private information on religion, household values, gun ownership…
Category: Commentaries and Analyses
At least 2m personal data sets feared leaked in Japan: survey
A Kyodo News survey of Japanese businesses found that at least 2.07 million data sets with personal information were leaked or suspected of leaking from 140 entities in Japan. The results were reported in the Bangkok Post: Of the 140, 75 organisations said they noticed they had been attacked only after police or another outside…
North Carolina Employees are not “Authorized” to Divert Employer Data
Amy R. Worley writes: As the year draws to a close, employer claims under the Computer Fraud and Abuse Act (“CFAA”) against departing employees for stealing or otherwise diverting employer information without authorization to do so are dying slow deaths in many federal courts across the nation. As noted over on the Non-Compete and Trade Secrets…
Oregon Employment Department computers still vulnerable a year after breach
Hillary Borrud reports: Computer systems at the Oregon Employment Department remain vulnerable more than a year after a major data breach at the agency, according to a state audit released this week. State employees have taken steps to tighten the Employment Department’s cyber security, but auditors found that problems remain. These include a lack of…
California might investigate massive leak of voter records
As I first reported in co-breaking the story about the massive leak of voter records that had been discovered by Chris Vickery, I called the California Attorney General’s Office to alert them to the leak of California voters’ information. The attorney I spoke with on December 21 told me she was immediately forwarding the information I provided, including the IP…
Few Consequences For Health Privacy Law’s Repeat Offenders
Regulators have logged dozens, even hundreds, of complaints against some health providers for violating federal patient privacy law. Warnings are doled out privately, but sanctions are imposed only rarely. Companies say they take privacy seriously. by Charles Ornstein and Annie Waldman ProPublica, Dec. 29, 2015, 4 a.m. This story was co-published with NPR’s Shots blog. When CVS Health customers complained…