Lorenzo Franceschi-Bicchierai reports: A company that markets cell phone spyware to parents and employers left the data of thousands of its customers—and the information of the people they were monitoring—unprotected online. The data exposed included selfies, text messages, audio recordings, contacts, location, hashed passwords and logins, Facebook messages, among others, according to a security researcher…
Category: Exposure
Babysitting app suffers ‘temporary data breach’ of 93,000 users
John E. Dunn reports: Babysitting-booking app Sitter “temporarily” exposed the personal data of 93,000 account holders, according to a researcher who recently discovered the trove of data using the Shodan Internet of Things (IoT) search engine. In a LinkedIn post, Bob Diachenko explains how he found the 2GB MongoDB database on August 13, which contained…
AU: Melbourne student health records posted online in ‘appalling’ privacy breach
The Australian Associated Press reports: The personal records of hundreds of Melbourne high school students have been mistakenly published, sparking an investigation into an “appalling” privacy breach. The Victoria education minister, James Merlino, said his department would launch an inquiry into the breach at Strathmore secondary college in the city’s north-west. Read more on The…
TPS recovers confidential student information found in dumpster behind Tulsa school
Samuel Hardiman and Reece Ristau report: Tulsa Public Schools may have violated multiple current or former students’ privacy rights afforded under federal law if it failed to protect confidential student records a Tulsa woman said she found in large metal trash receptacles behind McKinley Elementary School on Sunday evening. The records include gifted and talented…
AU:Sexual assault victim’s medical records given to wrong person
Another small-N breach with huge consequences. Chris O’Keefe reports: Ryde Hospital is at the centre of a gross breach of privacy, after the medical records of a sexual assault victim were mistakenly handed to another patient. A young woman was discharged from the hospital in Sydney’s North last week after presenting with a stomach bug….
Delhi HC issues notice in Shamnad Basheer’s plea seeking damages for Aadhaar data leaks
Aditi Singh reports: The Delhi High Court today issued notice to Unique Identification Authority of India (UIDAI) and the Central government in a plea seeking damages for Aadhaar data leaks. The respondents were granted six weeks’ time to file their replies in the matter. A Division Bench of Justices S Ravindra Bhat and Anu Malhotra was hearing a…