Tyler Lake reports: Indiana University officials say a tool designed to help university staff access student grade point averages was unintentionally made available to the entire IU community. Spokesperson Chuck Carney says the tool was immediately disabled once the ability to access all enrolled students’ GPAs was made known to IU officials. The Indiana Daily Student…
Category: Exposure
UK: Data leak exposes 17,000 yachting industry professionals
Lucy Ingham reports: A data breach at UK-based Crew and Concierge Limited has exposed the personal data of 17,379 people of 50 different nationalities working in the yachting industry. Crew and Concierge is an international recruitment agency specialising in securing staff for ultra-high-net-worth clients’ yachts operating around the world. Read more on Verdict.
Pabbly Email Marketing Exposes 51.2 Million Records Online
Jeremiah Fowler reports: Email marketing is big business and many companies rely on emails to keep in contact with their customers or potential customers. In the modern world of over priced pay per click ads targeted email marketing lists are the holy grail of an organization’s marketing strategy. This customer data is equally as valuable…
AU: Yarra Trams data breach: Commuters’ email addresses exposed
Timna Jacks reports: The personal email addresses of nearly 100 people have been exposed by Yarra Trams in yet another data breach involving Victorian commuters. In an email from a Yarra Trams officer to 91 commuters rejecting their compensation requests on Friday, the private email addresses of each of the commuters was exposed. Read more…
Arizona Department of Education redaction failure exposed 7,000 parents’ scholarship accounts
From the Goldwater Institute: January 28 — The Goldwater Institute was shocked to learn yesterday of a massive breach of privacy by the Arizona Department of Education, which released private personal information relating to almost 7,000 parents who participate in the state’s Empowerment Scholarship Accounts (ESA) program. The data breach is just the latest in…
Lawrenceville Internal Medicine Associates notifies patients of email gaffe that exposed patient email addresses
Sometimes, reports submitted to HHS do not show up on their breach tool for a few weeks. A breach report submitted January 2 by Lawrenceville Internal Medicine Associates of NJ caught my eye today. The incident, coded as unauthorized access/disclosure of protected health information in email, reportedly impacted 8,031 patients. The following is a notice…