Zack Whittaker reports: FitMetrix, a fitness technology and performance tracking company owned by gym booking giant Mindbody, has exposed millions of user records because it left several of its servers without a password. The company builds fitness tracking software for gyms and group classes that displays heart rate and other fitness metric information for interactive…
Category: Exposure
Garmin-owned navigation unit exposed thousands of boat owners’ data
Zack Whittaker reports: Navionics, an electronic navigational chart maker owned by tech giant Garmin, has secured an exposed database that contained hundreds of thousands of customer records. The MongoDB database wasn’t secured with a password, allowing anyone who knew where to look to access and download the data. The company’s main products give boat, yacht…
Google Exposed User Data, Feared Repercussions of Disclosing to Public
Douglas MacMillan and Robert McMillan report: Google exposed the private data of hundreds of thousands of users of the Google+ social network and then opted not to disclose the issue this past spring, in part because of fears that doing so would draw regulatory scrutiny and cause reputational damage, according to people briefed on the…
MedCall Advisors suffers second data leak in less than one month
A few weeks ago, DataBreaches.net reported on a leaky Amazon S3 bucket owned by MedCall Advisors in North Carolina. The leak, which exposed approximately 3,000 patients’ protected health information, was discovered by UpGuard, who published a number of redacted screenshots to document the leak. Their detailed report also noted how Randy Baker, the CEO of MedCall…
CA: John F. Kennedy High School breach letter to parents
Note: this is the John F. Kennedy High School in La Palma, California. October 3, 2018 Notice of Data Breach As a precautionary measure, we are writing to inform you about a recent data security incident that occurred on October 2, 2018. What Happened? On October 2, 2018 at 5:04 p.m., an email was sent…
Oklahoma DHS could have sent private medical info to wrong addresses
Dale Denwalt reports: Officials at the Department of Human Services said Monday that a small number of clients were affected this year by a computer error that labeled envelopes with incorrect addresses. A labeling error affected notices that informed patients and their guardians about changes to their plan of care. Letters were meant for people…