Liarna LaPorta of Wandera reports: Wandera’s threat research team has discovered a vulnerability affecting a number of airline e-ticketing systems that can expose passengers’ personally identifiable information (PII). This vulnerability can expose passenger data by using links that are easily intercepted by hackers. The intercepted and unencrypted links enable unauthorized third parties to view, and…
Category: Exposure
Indecent disclosure: Gay dating app left “private” images, data exposed to Web
Sean Gallagher reports on yet another exposed Amazon bucket: Jack’d, a “gay dating and chat” application with more than 1 million downloads from the Google Play store, has been leaving images posted by users and marked as “private” in chat sessions open to browsing on the Internet, potentially exposing the privacy of thousands of users….
FL: Trash scattered all over road contained SSN and medical records
Rachel Polansky reports: Trash scattered on the side of a major road in Lehigh Acres turns out to be information that could have ruined a woman’s life. The NBC2 Investigators went to check out the situation after your tips came into the newsroom. The tip came in as trash scattered on the side of the…
Employee and locum details in Well data leak up to seven years old
Isabel Finch reports: Some of the details of employees and locums accidentally leaked via email by Well Pharmacy in December may be up to seven years old, the multiple has told C+D. In December, a document – which included names, addresses, phone numbers, email addresses and some payroll numbers of 24,099 employees and locums –…
AU: Confidential documents discovered at former Radius Disability Services Havlin Street Site
Emma D’Agostino reports: MORE than two years have passed since Radius Disability Services went into administration. Yet, documents containing sensitive information about those who worked for and used the service remain at the former Havlin Street Site. Copies of a volunteer’s driver’s licence, bank statement, and birth certificate are among the papers strewn on the floor…
NZTA again forced to contact the Privacy Commissioner after another privacy breach
Jason Walls reports: The New Zealand Transport Agency is embroiled in yet another privacy saga, after accidentally revealing the private email addresses of almost 900 people in a mass traffic update email. This comes not long after the agency was forced to notify the Privacy Commissioner after it lost an unencrypted USB drive containing the…