The Chilean Transparency Council (‘CPLT’) announced, on 1 June 2020, that following an audit of 12,000 purchase orders made by 86 organisations in the health sector, the CPLT found that 12 purchase orders by hospitals and six by health services were made which revealed the sensitive personal data of patients. Read more on OneTrust Data…
Category: Exposure
How screwed is Indian healthcare data?
Sai Krishna Kothapalli writes: Some months ago, I read an interesting article on Techcrunch titled “A billion medical images are exposed online” about medical imaging storage servers that are not configured securely and are exposed online. This caught my attention, and I wanted to dig deeper, especially in the Indian context. Read more on Medium. This…
Ca: Privacy breach at Manitoba Agricultural Services Corporation
The Brandon Sun reports: The Manitoba Agricultural Services Corporation is notifying clients of a privacy breach of personal data that occurred on May 26. An attachment containing the name and contact information of AgriInsurance clients was attached in error to an email sent to 134 producers in Manitoba, the corporation said in a news release….
UK: First Minister promises to build public trust in Test and Protect following NHS Orkney coronavirus data breach
Paul Malik reports: Faith in the Test and Protect system could be undermined should data breaches like the one committed by NHS Orkney be repeated, Nicola Sturgeon has warned. Ms Sturgeon was responding to questions after it was discovered more than 50 coronavirus test results were sent “in error” to a local business. As well…
India’s popular BHIM payments platform reportedly leaks 7M users’ data (UPDATED with NPCI denial)
Ivan Mehta reports: A data leak from India’s BHIM payment app exposed personal data of 7 million Indians including addresses, scans of Aadhar IDs, and caste certificates. A report from cybersecurity company VPN Mentor suggests that this 409GB database was stored in a misconfigured AWS S3 bucket, making all data publicly accessible. The report noted that the…
Joomla team discloses data breach
Catalin Cimpanu reports: The team behind the Joomla open source content management system (CMS) announced a security breach last week. The incident took place after a member of the Joomla Resources Directory (JRD) team left a full backup of the JRD site (resources.joomla.org) on an Amazon Web Services S3 bucket owned by their own company….