CBC News reports: Fifty boxes of records containing “sensitive personal information” spent nearly three weeks sitting in a central area of the Grand Falls-Windsor Department of Transportation and Works depot this spring, according to Donovan Molloy, the province’s privacy commissioner. “It’s one of the most serious inadvertent breaches that I’ve seen in my term as…
Category: Exposure
This UK pub chain left 17,000 customer details exposed online
Nicole Kobie reports: The personal details of thousands of beer drinkers were left exposed thanks to a Wi-Fi provider proving leakier than a smashed pint glass. Brewhouse & Kitchen is a small chain of pubs with 23 locations across the UK. These include locations in London, Nottingham, Chester, Cardiff and Bristol. Patrons attempting to access…
Children’s charity Kars4Kids leaks info on 21,000 donors
Bob Diachenko of HackenProof.com reports: Kars4Kids is a charity that asks people to donate their cars, motorcycles, RVs, and real estate. They are most known for their nationwide advertising using their hypnotic theme song where a child and a Johny Cash impersonator sing the phone number and invites people to donate their cars today. On…
Ca: Department Failed To Follow Directive Following Privacy Breach: Molloy
Oh …. (insert your preferred three-letter acronym). VOCM reports from St. John’s, NL: The privacy commissioner has found a government department not only committed a privacy breach, but that it failed to follow a subsequent directive from the commissioner. Donovan Molloy says the Department of Transportation and Works relocated a number of paper records to…
Names of recreational cannabis buyers hacked
Antonella Artuso reports: The privacy of 4,500 Ontario Cannabis Store customers was breached through what the online retailer says was a weakness in Canada Post’s tracking website, the Toronto Sun has learned. The information obtained was the buyer’s name or initials, postal code, date of cannabis delivery, the Canada Post tracking number and OCS’ corporate…
Data of nearly 700,000 Amex India customers exposed via unsecured MongoDB server
Catalin Cimpanu reports: The personal details of nearly 700,000 American Express (Amex) India customers have been accidentally left exposed online via an unsecured MongoDB server. The leaky server, which was left exposed online without a password, was discovered three weeks ago by Bob Diachenko, Director of Cyber Risk Research at cyber-security firm Hacken. Most of…