Vito Pilieci reports: The provincial government is scrambling to notify thousands of Ontarians that they have been victims of a data breach that has exposed the health card numbers, birth dates and homes addresses of at least 5,600 people. Anne-Marie Flanagan, a spokeswoman for the Ministry of Government and Consumer Services, admitted the breach after the…
Category: Exposure
Ca: Chatham-Kent Health Alliance discloses March privacy incident
Matt Weverink reports: Two months after a privacy breach took place at the Chatham-Kent Health Alliance, the hospital is now reporting the incident to the public. Hospital officials say on March 6, 2017, a document containing sensitive health information about seven patients was found on the front lawn of a community member. The document was…
Sg: National University of Singapore educates students on protecting their information
Channel NewsAsia reports: The National University of Singapore (NUS) has to put in place an e-training module for all its students on personal data protection, after it emerged that the personal particulars of 143 student volunteers were breached in 2016. In a press statement on Friday (Apr 28), an NUS spokesperson said a URL link…
AU: Privacy breach costs $23,000 – but could have been worse
Alison Baker and Rhiannon Nixon of Hall & Wilcox write: The Office of the Australian Information Commissioner (OAIC) has ordered Comcare to pay a Defence Force employee $23,000 after it inadvertently published on its website personal information, including sensitive health information, about the employee. For organisations with obligations under the Privacy Act 1988 (Cth), this…
Info on Home Depot customers exposed (but no financial data)
Michael E. Kanell reports: A spread sheet listing about 8,000 customers, along with their transaction and a range of personal information, was posted for an unknown amount of time, on a Home Depot web site. No financial data was part of the list, which did not compare with the 2014 data breach in which hackers…
UK: Privacy breach at Gloucestershire County Council exposed medical information online
When hacktivist @ElSurveillance recently tweeted that 14 government sites had the same vulnerabilities, including MYSQL, Cross Site Script, etc., someone responded that councils were generally not considered “government.” DataBreaches.net had – and will continue to – consider them “government” entities, as local government is still government. And in this site’s experience, council breaches can involve sensitive information,…