Juha Saarinen reports: Retailer Big W‘s website remains in browsing-only mode after a glitch meant shoppers were shown the personal information of other customers. In a notice to customers, Big W said the “technical issue” occured on Thursday November 10 between 1.50pm and 3pm. It meant “the first stage of the checkout process [was] pre-populated with the personal…
Category: Exposure
TN: Vanderbilt U. Psychological & Counseling Center exposed students’ names in email survey
Sarah Friedman reports: This afternoon, the Psychological & Counseling Center sent an email out to 468 of its clients without blocking the recipients from seeing each other’s names. The content of the email was a satisfaction survey regarding the student’s recent visit to the center. Several students responded to all recipients of the email with…
Open Database Exposes Millions of Job Seekers’ Personal Information
Joseph Cox reports: On Thursday, it emerged that an outsourcing company named Capegemini had left a database containing sensitive information on the open internet, exposing the names, contact details, resumes, and other personal information of potentially millions of people who used a global recruiting firm. The episode highlights the lingering problem of organizations accidentally leaving…
Kaiser notifies 8,000 members whose information was briefly exposed online
Three Kaiser units – Kaiser Permanente Health Plan, Inc of Northern California, Kaiser Permanente Health Plan, Inc of Southern California, and Kaiser Foundation Health Plan of the Northwest – have been notifying members after an error exposed some members’ protected health information for a brief period. Based on reports to HHS, 8,020 members have been notified that for approximately two hours during…
Ca: Eastern Health ordered to tighten procedures after patient privacy breach
CBC News reports: Newfoundland and Labrador’s privacy commissioner is ordering Eastern Health to remind staff to log out of computer programs, following an investigation of a privacy breach. Information and Privacy Commissioner Donovan Molloy’s report describes the May 28, 2015 incident as an “intentional breach of patient information.” The report says an unknown person inappropriately accessed and printed personal health information…
Customers for more than a hundred car dealerships across the US were put at risk because of shoddy database security
Zack Whittaker reports: If you bought a car in the last few years, there’s a good chance your personal information may have found its way to the open internet. Names, addresses, phone numbers and social security numbers for both customers and employees for over a hundred car dealerships have leaked online, all thanks to a…