While I’ve been busy tracking W-2 phishing scams, let’s not lose sight of the fact that there are other ways for criminals to obtain W-2 or tax information, and that human error continues to turn assets into low-hanging fruit. Interpreters Unlimited recently notified the Vermont Attorney General’s Office that the contents of an employee’s backup device were…
Category: Exposure
McDonalds India is leaking 2.2 million users data
Hackernoon writes: This is published under our responsible disclosure policy The McDonald’s India app, McDelivery is leaking personal data for more than 2.2 million of its users which includes name, email address, phone number, home address, accurate home co-ordinates and social profile links. We contacted McDelivery on 7th Feb and received an acknowledgement from a…
Affiliated Santé Group learned that patient info was exposed on GitHub for years
So there was another breach disclosed in January that I didn’t find out about until today. It’s an insider-error situation involving a software developer contractor who unintentionally exposed protected health information (PHI) of 550 patients on GitHub – for more than five years. Here is Affiliated Santé Group’s notification: January 30, 2017 RE: Notice of…
Singapore Armed Forces apologizes for data leak
Chong Zi Liang reports: The identity card numbers and photos of a batch of Singapore Armed Forces (SAF) recruits were published online by mistake last Saturday before the authorities realised the error and removed the information the next day. In a statement, Basic Military Training Centre (BMTC) commander Desmond Yeo apologised for the blunder, adding…
Ster-Kinekor “data leak” means private data of 7 million South Africans is at risk
Nic Andersen reports: Incredibly worrying news has emerged around data privacy issues at local cinema chain Ster-Kinekor. An alleged data leak means up to 7 million South Africans could have had their private data compromised, potentially leaving their bank accounts and other information at risk. Fin24 reports that this week an online account resource claimed…
Samsung Leaking Customer Info, Tells Customer to Take It Up with the Shipper?!
From the add-this-to-the-list-of-concerns-about-Samsung dept. Matt Metzger writes: About four months ago, I ordered a new TV directly from Samsung’s online store. A few days later, I received a tracking link via email. http://www.agsystems.com/listhawb.asp?searchtype=hawb&searchvalue=1138977 Reusing Tracking Numbers When I first received the link, it showed an order that wasn’t my own. I assumed there was some sort of…