Catalin Cimpanu reports: One of the facial recognition databases that the Chinese government is using to track the Uyghur Muslim population in the Xinjiang region has been left open on the internet for months, a Dutch security researcher told ZDNet. The database belongs to a Chinese company named SenseNets, which according to its website provides…
Category: Exposure
Mumsnet reports itself to regulator over data breach
Alex Hern reports: Mumsnet has reported itself to the information commissioner after a data breach resulted in users accidentally logging into the accounts of strangers. A botched upgrade to the software the forum runs on meant that for three days, if two users tried to log in at the same time, there was the possibility…
Is your airline’s e-ticketing system putting your data at risk?
Liarna LaPorta of Wandera reports: Wandera’s threat research team has discovered a vulnerability affecting a number of airline e-ticketing systems that can expose passengers’ personally identifiable information (PII). This vulnerability can expose passenger data by using links that are easily intercepted by hackers. The intercepted and unencrypted links enable unauthorized third parties to view, and…
Indecent disclosure: Gay dating app left “private” images, data exposed to Web
Sean Gallagher reports on yet another exposed Amazon bucket: Jack’d, a “gay dating and chat” application with more than 1 million downloads from the Google Play store, has been leaving images posted by users and marked as “private” in chat sessions open to browsing on the Internet, potentially exposing the privacy of thousands of users….
FL: Trash scattered all over road contained SSN and medical records
Rachel Polansky reports: Trash scattered on the side of a major road in Lehigh Acres turns out to be information that could have ruined a woman’s life. The NBC2 Investigators went to check out the situation after your tips came into the newsroom. The tip came in as trash scattered on the side of the…
Employee and locum details in Well data leak up to seven years old
Isabel Finch reports: Some of the details of employees and locums accidentally leaked via email by Well Pharmacy in December may be up to seven years old, the multiple has told C+D. In December, a document – which included names, addresses, phone numbers, email addresses and some payroll numbers of 24,099 employees and locums –…