Douglas MacMillan and Robert McMillan report: Google exposed the private data of hundreds of thousands of users of the Google+ social network and then opted not to disclose the issue this past spring, in part because of fears that doing so would draw regulatory scrutiny and cause reputational damage, according to people briefed on the…
Category: Exposure
MedCall Advisors suffers second data leak in less than one month
A few weeks ago, DataBreaches.net reported on a leaky Amazon S3 bucket owned by MedCall Advisors in North Carolina. The leak, which exposed approximately 3,000 patients’ protected health information, was discovered by UpGuard, who published a number of redacted screenshots to document the leak. Their detailed report also noted how Randy Baker, the CEO of MedCall…
CA: John F. Kennedy High School breach letter to parents
Note: this is the John F. Kennedy High School in La Palma, California. October 3, 2018 Notice of Data Breach As a precautionary measure, we are writing to inform you about a recent data security incident that occurred on October 2, 2018. What Happened? On October 2, 2018 at 5:04 p.m., an email was sent…
Oklahoma DHS could have sent private medical info to wrong addresses
Dale Denwalt reports: Officials at the Department of Human Services said Monday that a small number of clients were affected this year by a computer error that labeled envelopes with incorrect addresses. A labeling error affected notices that informed patients and their guardians about changes to their plan of care. Letters were meant for people…
App flaw let anyone access UK Conservative politicians’ data
Jon Fingas reports: The UK Conservative party is learning a hard lesson about the importance of basic security measures in mobile apps. Users have discovered that you could log into the party’s conference app using only an attendee’s email address, providing access to all kinds of sensitive data. And when many of the conference participants are…
Telegram fixes IP address leak in desktop client
Catalin Cimpanu reports: Telegram users who specifically utilize the application for its anonymity features are advised to update their desktop clients as soon as possible to patch a bug that will leak their IP address in some scenarios. The bug was found by Dhiraj Mishra, a bug hunter from Mumbai, India, and was patched by…