Zack Whittaker reports: A popular fitness app that claims over six million users was leaking private and sensitive data, including health information and private messages sent between users. PumpUp, an Ontario-based company, bills itself as a fitness community, allowing subscribers to discover new workouts and record their results, and get advice from fitness coaches and…
Category: Exposure
‘Embarrassing’ leak shows EU falls short of own GDPR data law
Margi Murphy Ben Riley-Smith report: The European Commission has claimed it is not subject to the strict new data protection law that it has imposed across Europe, following an “embarrassing” leak of personal data on its website. Officials in Brussels admitted the bureaucracy that designed the rules is not itself compliant with the General Data Protection…
Jaguar Land Rover data leak reveals employee records, upcoming layoffs
Nick Kurczewski reports: A massive data leak has revealed the personnel files of hundreds of employees at Jaguar Land Rover‘s factory in Solihull, England. The documents reveal details such as sick days used, disciplinary issues and — most notably — red lines indicating potential firings in the weeks or months ahead. In total, the personal records…
NY: Monroe County Clerk tossing personal, sensitive DMV customer information in the trash
WHEC has the story, brought to them by a consumer who observed employees just tossing records with personal information: Mottshaw says he refuses to give his social security number out because his identity has been stolen before. When he was at the DMV in Henrietta he says he saw employees throw documents in the garbage….
T-Mobile bug let anyone see any customer’s account details
Zack Whittaker reports: A bug in T-Mobile’s website let anyone access the personal account details of any customer with just their cell phone number. The flaw, since fixed, could have been exploited by anyone who knew where to look — a little-known T-Mobile subdomain that staff use as a customer care portal to access the…
Insurance startup leaks sensitive customer health data
Zack Whittaker reports: A software startup that provides independent insurance brokers with customer management software has exposed highly sensitive information on thousands of insurance policy holders. A vast cache of data was stored on Amazon S3 storage bucket by AgentRun, a Chicago, Ill.-based company founded in 2012 by Andrew Lech, a former independent insurance broker….