Susan Sherring reports: The City of Ottawa has been left scrambling after committing a serious breach privacy in releasing to a reporter the names and some personal and medical information of about a dozen city retirees. Worse yet, the city didn’t realize the error until notified by this reporter. “Allow me to begin this response by…
Category: Exposure
Cisco jobs portal exposed personal data
ITnews reports: Wrongly configured security settings in a Cisco portal used for job applications has resulted in the leak of personal data online. The networking vendor told affected individuals that a “limited set of job application related information” had been exposed due to botched settings in the mobile version of its professional careers website. It said the…
Security breach in shopping app AliExpress
Daniel Gilenson reports: A security breach was discovered in the popular shopping application AliExpress. In the last several days details of many users who requested to remain anonymous were exposed to anyone. […] On the website, anyone who writes a comment may remain anonymous but since the last update it was discovered that the…
UK: TLT v SoS: How do you quantify damages for data breaches?
Cynthia O’Donoghue and Chantelle Taylor write: A recent High Court decision, TLT and others v Secretary of State for the Home Office [2016] EWHC 2217 (QB) (“TLT v SoS”), paves the way for the greater recognition of distress in cases of data breaches and the misuse of private information. The victims of a data breach, in this case asylum…
NZ: Novopay botch up creates security breach for school staff
From Fuseworks Media: Some schools have been sent the full payroll information of other schools this week in what appears to be a significant privacy breach by Novopay, the school payroll service. The principal of Hamilton West School, Mark Penman, says his school was sent a payroll report known as the SUE report, containing the…
Centrelink apologizes for new privacy breach
From the oi-veh dept., Noel Towell reports: Centrelink has apologised to hundreds of users of the myGov web portal after their contact details were shared with hundreds of strangers – twice. The latest federal government data breach is being blamed on a rookie email error, someone at the giant Department of Human Services hitting the CC button on an email…