Matt Fountain reports: Twelve people, including 10 San Luis Obispo County residents, were notified this week that their Social Security numbers were “inadvertently” released to two private title companies because of a technical error, the county Clerk-Recorder’s Office said Thursday. The 12 people have been notified of the breach and urged to monitor their credit reports, Assistant Clerk-Recorder…
Category: Exposure
Hundreds of Lowe’s customers’ personal information compromised
Paul Boyd reports: Personal information connected to hundreds of Lowe’s customers has been compromised. The breach is connected to a fax machine in Vancouver, Canada. A spokesperson from the company that owns the machine does not want to be identified, but said they have received more than 250 pages of customer order information in recent…
It was a good day for dumpster divers…
Steve Barrett reports from Florida: An Orlando man searching for scrap metal Tuesday night reported finding thousands of financial documents ripe with people’s personal information tossed in a dumpster. For identity thieves, the documents would have been a gold mine of information. “(They contained) emails, phone numbers, date of birth, child’s date of birth, you…
Spiral Toys sends something to the California Attorney General, but what is it?
This just gets stranger and stranger in terms of how Spiral Toys is responding to the CloudPets leak and hack reported by Troy Hunt. The following is a Spiral Toy notification, sent to the California Attorney General’s Office today, below. All typos are as in the original. Why they sent this thing to the California Attorney General’s…
Data from connected CloudPets teddy bears leaked due to misconfigured database; 820,000 kids’ files exposed
Troy Hunt reports that a misconfigured MongoDB installation resulted in audio files of children’s and parents’ conversations recorded by CloudPets being exposed in a Shodan search. And as we’ve seen many other times, the exposed files were deleted by an attacker, and a purported “ransom” note left in place of the database – a ransom note that was…
NC health department exposed patient information in email
Lynn Bonner reports: The state Department of Health and Human Services sent private patient information to adult care homes by unencrypted email last year. The security lapse involved 12,731 Medicaid patients living in adult care homes. On Nov. 30, an employee sent an unencrypted email that included patient names, Medicaid numbers, and the homes where…