Depressingly, Bob Diachenko of Hackenproof writes: These days it’s quite easy for an ordinary person to get the contact details of any business or organization for a certain fee or subscription. However, should seemingly non-sensitive data be so easily available? 123GB of personal data exposed On November 5th, we discovered an open and unprotected MongoDB…
Category: Exposure
MO: Woman sues SSM Health over alleged privacy violation
ABC17 reports a follow-up to a breach previously noted on this blog. A Holts Summit woman is suing SSM Health St. Mary’s Hospital after she claims it didn’t do enough to protect the privacy of her medical records. According to the lawsuit filed in Cole County, the patient, referred to as “T.K,” received a letter…
Edmonton Humane Society apologizes after personal financial info ‘accidentally posted’ on its website
Phil Heidenreich reports: The Edmonton Humane Society issued an apology on Tuesday after it says the personal financial information of at least five participants in one of its programs was “accidentally posted on the organization’s corporate website for a short period of time.” Read more on GlobalNews.ca.
USPS Site Exposed Data on 60 Million Users
Brian Krebs reports: U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details for some 60 million other users, and in some cases to modify account details on their behalf. KrebsOnSecurity was contacted last week by a researcher who discovered the problem, but who asked…
Boxes of private, personal records left exposed in government office for weeks
CBC News reports: Fifty boxes of records containing “sensitive personal information” spent nearly three weeks sitting in a central area of the Grand Falls-Windsor Department of Transportation and Works depot this spring, according to Donovan Molloy, the province’s privacy commissioner. “It’s one of the most serious inadvertent breaches that I’ve seen in my term as…
This UK pub chain left 17,000 customer details exposed online
Nicole Kobie reports: The personal details of thousands of beer drinkers were left exposed thanks to a Wi-Fi provider proving leakier than a smashed pint glass. Brewhouse & Kitchen is a small chain of pubs with 23 locations across the UK. These include locations in London, Nottingham, Chester, Cardiff and Bristol. Patrons attempting to access…