Callie Ferguson reports: A communications official at Northern Light Acadia Hospital in Bangor mistakenly emailed the confidential names of 300 patients with prescriptions for Suboxone, a medication used to treat opioid use disorder, to an editor at the Bangor Daily News last week. In addition to their names, the list also contained the identities of…
Category: Exposure
Over 100 Million JustDial Users’ Personal Data Found Exposed On the Internet
Remember what I said earlier today about India being a data protection mess? Here’s another example. Mohit Kumar reports: An unprotected database belonging to JustDial, India’s largest local search service, is leaking personally identifiable information of its every customer in real-time who accessed the service via its website, mobile app, or even by calling on…
Update on Meditab breach
On March 19, this blog linked to a TechCrunch report about an improperly secured Meditab fax server that potentially allowed fax images with patient information to be accessed from an analytics portal. The exposure had been found by SpiderSilk, a cybersecurity firm in Dubai, who estimated that 6 million images were potentially accessible. The TechCrunch…
UT fired counselor accused of disclosing student’s PTSD
Sarah Elms reports: A University of Toledo counselor accused of improperly disclosing a student’s personal health information has been fired. University officials on Dec. 18, 2018, notified Mychail Scheramic that his employment would be terminated at close of business March 18. He was hired in 2017 as the university’s counseling center director and was paid…
Brexit: Home Office sorry for EU citizen data breach
Add this to any list of things requiring an apology? Ross Hawkins reports: The Home Office has apologised to hundreds of EU citizens seeking settled status in the UK after accidentally sharing their details. It blamed an “administrative error” for sending an email that revealed 240 personal email addresses – a likely breach of the…
Saratov: medical documents with personal data of patients found at landfill
Saw this item on CrimeRussia under High Profile Cases. I’m not sure why they call this a high profile case, but it seems like sensitive info is sensitive info no matter what country you live in, and having papers with medical info floating around is just not acceptable in Russia, either. The Regional Prosecutor’s Office…