Jeremy Kirk reports: An Israeli marketing company left authentication credentials for an Elasticsearch database online, exposing more than 140 GB worth of contact details for individuals in the U.S. and Europe. The exposed data includes names, email addresses, phone numbers, physical addresses and genders, but not all records have those fields completed, according to a…
Category: Exposure
UK: Rotherwood Healthcare AWS bucket security fail left elderly patients’ DNR choices freely readable online
Gareth Corfield reports: A leak of 10,000 records at a Leicestershire care home provider exposed elderly patients’ wishes not to be resuscitated, detailed care plans and precisely how much councils paid for individual patients’ care. Not only did Rotherwood Care Group, trading as Rotherwood Healthcare, leave an Amazon Web Services S3 bucket accessible to everyone…
Medical Records From Shuttered Mental Health Clinic Found Dumped In West Englewood Alley
Tara Molina reports: Hundreds of pieces of paper containing people’s most sensitive information were found dumped in an alley. The papers were mental health records from a South Side center that closed years ago. CBS 2’s Tara Molina worked Tuesday to determine how they ended up on the street. […] We found the documents are…
Ex-Mossad chief says Likud app leaks as dangerous to Israel as coronavirus
The Times of Israel reports: A former head of the Mossad spy agency sounded the alarm Wednesday about an app operated by Prime Minister Benjamin Netanyahu’s Likud party ahead of next week’s elections, warning that using it was “a real security threat” and likening the level of danger it poses to that of the deadly…
UK: Samsung’s website error exposes UK customer data
Sabina Weston reports: Samsung’s UK website has suffered a data breach resulting in the leak of private information of around 150 customers, the company has confirmed. Samsung said that the error exposed names, telephone numbers, postal and email addresses and previous orders, according to a statement seen by Reuters. Samsung emphasised that credit card information was not exposed. Read more on IT…
UK: Financial Conduct Authority goof reveals confidential details of 1,600 consumers
Jasper Jolly reports: The Financial Conduct Authority has admitted to accidentally revealing personal information of about 1,600 people who complained about it, in an embarrassing lapse for the regulator of Britain’s banks and investors. The FCA published names, addresses and phone numbers in a document on its website, in response to a request for data under the…