Phil Muncaster reports: An estimated 14,000 employees at a Liverpool NHS hospital trust have been informed that their data was leaked via email due to human error, according to reports. A file containing sensitive payroll information was sent to hundreds of NHS managers and 24 external accounts, according to an apology letter to victims from…
Category: Exposure
Mscripts notifies 66,372 patients whose prescription information was in unsecured cloud storage for two years
“Thousands of pharmacies & millions of people use mscripts,” the mscripts website claims. “We provide a digital communication platform to help patients stay on track with their healthcare by delivering targeted messages through a mobile and web platform tied directly to the pharmacy dispensing system,” the California firm explains. mscripts is Cardinal Health’s mobile pharmacy…
UK: Lancashire County Council has referred itself following a data breach
Amy Farnworth reports: Lancashire County Council has referred itself to the Information Commissioner’s Office following a data breach involving its new HR and finance system. At this point there is no evidence that personal data has been publicly available, only that this information has been visible to internal users should someone want to find it….
Data Breach Reported At Mount Pleasant Central School District
Ben Crnic reports: A data breach may have exposed information related to some students at a school district in Northern Westchester. The breach was announced by Mount Pleasant Central School District Superintendent Peter Giarrizzo on Friday, Feb. 17, who said that several student email passwords may have been compromised by the incident. After the data breach…
FL: Brooks Rehabilitation notifies patients of pixel tracking breach
On January 30, Brooks Rehabilitation (“Brooks”) in Florida disclosed that in December, they discovered tracking technology vendors that provide services to Brooks were able to view/access individually identifiable health information (IIHI) provided when a website user provided contact information or feedback via a Brooks website. The data transmitted could have included information such as name;…
Indian social media app Slick exposed childrens’ user data
Jagmeet Singh reports: Emerging Indian social media app Slick left an internal database containing users’ personal information, including data of school-going children, publicly exposed to the internet for months. Since at least December 11, a database containing full names, mobile numbers, dates of birth, and profile pictures of Slick users was left online without a password. Read…