In 2011, the Information Commissioner’s Office had the Wolverhampton council sign an undertaking to improve data protection. In 2014, the ICO ordered the council to improve data protection. And now in July, 2016, we read this: A report from the Information Commissioner’s Office said payroll information relating to 9,858 workers had been disclosed to a ‘third…
Category: Exposure
Glassdoor email gaffe exposers users’ email addresses
So Glassdoor updated its terms of service, and dutifully notified its users by putting all their email addresses in the TO: field. Yeah, you read that right. And no one apparently noticed before hitting SEND. Leading to a second email later today: Dear Glassdoor User: Earlier today we inadvertently exposed your email address to other…
Ca: Government knew of Phoenix privacy breach issue more than a year ago
Aedan Helmer reports: The government encountered not one, but two privacy breaches with the problematic Phoenix pay system, and was aware of the issue more than a year ago, officials acknowledged Thursday. In an open letter to public servants posted online Thursday afternoon, Public Services and Procurement Canada deputy minister Marie Lemay said that in both…
Wyoming officials investigate medical office documents
It sounds like something broke down somewhere in the disposal of 96 boxes of medical office documents found in a dumpster, but it’s not yet clear who’s responsible. The Wyoming Board of Medicine reported Monday that medical office documents from College Hill Health Center have been retrieved but the board has not had a chance…
Asiana Airlines Website Has Customers’ Personal Data Leak
Huh Sung-soo reports: A lack of security on Asiana Airlines’ website exposed the sensitive information of its passengers. […] Asiana Airlines released a statement that there was an exposure of the universal resource locator (URL) for those attached files within contents they uploaded on the frequently asked questions (FAQ) of its Internet bulletin board by some…
Oh, damn, Friday edition.
Several weeks ago, I noted a misconfigured 2014 version of World-Check database and an analysis of its contents. The database contains information on individuals who have histories of allegedly being involved in financial crime, terrorism, or other types of crime. Banks and other institutions use such databases as part of their due diligence. Today, I see that two…