Kelly Brennan reports: The personal information of 160 Temple University students was exposed after an employee accidentally uploaded a document containing information like dates of birth, cell phone numbers and passport information to a public university website. An employee in Temple’s Risk Management office uploaded the document to the Temple University Travel Registry Site on…
Category: Exposure
Ca: Town of Oliver notifies residents of privacy breach
Colin Dacre reports: The Town of Oliver is advising residents about a privacy breach after municipal staff accidentally sent out private tax information to three email addresses. “During the process of email notification to property owners of their 2019 property tax notice, an error was made in which the attachments on emails to three individual…
Auto Dealer Software Provider Settles FTC Data Security Allegations
The following is a press release issued by the Federal Trade Commission (FTC) that relates to a data security incident — a misconfiguration — discovered by MacKeeper researchers in 2016 that was previously noted on this site, including a subsequent settlement between DealerBuilt and the New Jersey Attorney General’s Office. From the wording of the…
Russian Banks Leaked Personal Data From 900k Clients
Tanya Chepkova reports: Clients from the top three Russian banks entrusted their data — including phone numbers, addresses, and IDs — to the financial institutions. Now, this sensitive information is publicly available. Databases with sensitive personal information about the clients of the top Russian banks — including Alfa Bank, the country’s largest commercial bank —…
9.5 billion rows of email metadata leaked by Shanghai Jiao Tong University
Justin Paine reports: While searching Shodan, I recently discovered an ElasticSearch database without any authentication. This database contained metadata related to a huge amount of emails. It was eventually confirmed that this server and the email metadata was controlled by a large university located in China. I would like to thank the university’s security team…
SG: Firm fined $4k by PDPC for leak of more than 400 national servicemen’s data
Lim Min Zhang reports: A firm has been fined $4,000 by Singapore’s privacy watchdog for the leak of the personal data of more than 400 national servicemen on June 12 last year due to a technical error. The data comprised the log-in identifications, e-mail addresses, delivery addresses and mobile phone numbers of 427 men from…