Michael E. Kanell reports: A spread sheet listing about 8,000 customers, along with their transaction and a range of personal information, was posted for an unknown amount of time, on a Home Depot web site. No financial data was part of the list, which did not compare with the 2014 data breach in which hackers…
Category: Exposure
UK: Privacy breach at Gloucestershire County Council exposed medical information online
When hacktivist @ElSurveillance recently tweeted that 14 government sites had the same vulnerabilities, including MYSQL, Cross Site Script, etc., someone responded that councils were generally not considered “government.” DataBreaches.net had – and will continue to – consider them “government” entities, as local government is still government. And in this site’s experience, council breaches can involve sensitive information,…
Aadhaar data leak in Jharkhand raises doubts, again: Here are the details
Business Standard reports: An incident in Jharkhand again seems to have raised some serious questions of Aadhaar’s data-breach vulnerabilities. The Aadhaar numbers of hundreds of thousands of pension beneficiaries were suspected to have been illegally displayed on a government website in Jharkhand, in violation of the Aadhaar Act, The Indian Express reported. The lapse, apparently, occured due…
AU: Patient privacy breach: over 1600 medical letters found dumped in Sydney bin
Kate Aubusson reports: More than 700 public patients have had their privacy breached and potential delays in their follow up care after more than 1600 medical letters were found dumped in Sydney bin. NSW Health is investigating the incident involving a sub-contractor for a company tasked with transcribing medical letters sent from specialists to general practitioners,…
PAUSD student data exposed in Schoolzilla data breach
So we’re beginning to learn a bit more about the Schoolzilla data breach that MacKeeper Security Research Center’s Chris Vickery reported yesterday. Chris had reported that 1.3 million students had their data in the misconfigured Amazon bucket, but he couldn’t be more specific as to where these students came from as he deleted the data…
30,000 London gun owners hit by Met Police ‘data breach’
Gareth Corfield reports: London gun owners are asking questions of the Metropolitan Police after the force seemingly handed the addresses of 30,000 firearm and shotgun owners to a direct mail marketing agency for a commercial firm’s advertising campaign. The first any of the affected people knew about the blunder was when the leaflet (pictured below)…