More details have emerged on a breach first noted on this site last month. Jim Small of the Arizona Center for Investigative Reporting (AZCIR) reports that the breach occurred after AZCIR filed a public records request for records of appeals filed by students over letter grades issued by the state Board of Education. On Oct….
Category: Exposure
Huddle’s ‘highly secure’ work tool exposed KPMG and BBC files
Chris Foxx reports: The BBC has discovered a security flaw in the office collaboration tool Huddle that led to private documents being exposed to unauthorised parties. A BBC journalist was inadvertently signed in to a KPMG account, with full access to private financial documents. Huddle is an online tool that lets work colleagues share content…
Social Security numbers of 2,100 Maine foster care participants posted online
J. Craig Anderson reports: The names, addresses and Social Security numbers of roughly 2,100 Mainers who receive foster care benefits were accidentally posted to a public website in September, the Maine Office of Information Technology said Monday. The incident was the responsibility of an employee of a contractor, Knowledge Services, who still has a contract…
Fasten data leak: Nearly 1 million users’ sensitive data mistakenly exposed by US ride-hailing firm
India Ashok reports: Over one million users’ personal and financial data was inadvertently publicly exposed by US-based ride hailing firm Fasten. The leaked data includes names, emails, phone numbers, credit card data, links to photos, device IMEI numbers, GPS data and users’ taxi routes. The firm also exposed sensitive information of its own drivers, including…
Cook County Health and Hospitals System Patients Impacted by Experian Health Breach
HIPAA Journal reports: Cook County Health and Hospitals System, a health system comprising two hospitals and more than a dozen community health centers in Cook County Illinois, has alerted patients to a breach of their protected health information. The breach occurred at Experian Health, a business associate of Cook County Health and Hospitals System. Experian…
Security flaw may have exposed personal info on 21,000 Utah Express Pass users
Oops? Art Raymond reports: A vigilant UDOT Express Pass customer discovered a glaring security breach in the third-party website that manages pass accounts, but state officials don’t yet know if the personal information of approximately 21,000 current and former customers has been compromised. That information on customers who have purchased passes for accessing HOV lanes…