March 9, 2018 The Arc Erie County New York (The Arc) was recently made aware that certain information contained on two spreadsheets stored on its database was publicly available on the internet between approximately July 2015 and February 15, 2018 due to a problem with a link on The Arc’s website. This issue appears to…
Category: Exposure
NY: Middletown Medical dealing with data breach
Daniel Axelrod reports: Middletown Medical recently discovered the practice’s staff may have accidentally disclosed an unspecified amount of its patients’ personal health information in January, the provider announced Thursday. “On January 29, 2018, we learned that the security setting on a Middletown Medical radiology interface may have permitted users to see a patient listing and,…
TX: Sensitive documents found strewn about on Houston street
Andy Cerota reports that trash blowing around on Brittmore Road near Hammerly Boulevard in Houston turned out to be thousands of documents on the side of the road, may with personal and sensitive information. Thursday morning. It’s not clear from the reporting who was responsible for all those records. Read more on Click2Houston.
Grindr security flaws expose users’ location data
Brian Latimer reports: Grindr, a gay-dating app, suffers from two security issues that can expose the information of its more than 3 million daily users, including the location data of people who have opted out of sharing such information, according to cybersecurity experts. The security flaws were identified by Trever Faden, CEO of the property…
Broker Watchdogs Accused of Letting Sensitive Data Go Public
Benjamin Bain reports: A whistle-blower is accusing some key financial regulators of allowing sensitive broker information to become readily accessible, even as industry watchdogs emphasized the need for companies to protect client data. According to a complaint lodged with the U.S. Securities and Exchange Commission, personal data such as brokerage account numbers provided to an…
“First do no harm” should be “First, secure your patient data, Doctor!”
When they discovered more than 42,000 patient records and millions of patient clinical notes exposed on a misconfigured rsync backup, researchers at UpGuard responsibly set out to notify the entity to secure their data. It turned out to be a Herculean task that would take almost two months and multiple entities to get the job…