Another child-oriented site has exposed information due to a misconfigured MongoDB installation. This time, it’s ABCya.com, according to the MacKeeper security research team. Here’s what they reported they found exposed: credentials and information of 11k+ archived customers (including IP addresses, email addresses, names, temporary access codes, hashed and salted passwords) credentials and information on 21k+ active…
Category: Exposure
Comanche County Memorial Hospital notifies 2,199 patients after contractor’s email gaffe
On April 25, Comanche County Hospital Authority notified HHS that 2,199 patients were affected by an email incident. From their press release: Comanche County Memorial Hospital issues public notice of HIPAA Breach Lawton, OK (April 27, 2016) – Comanche County Memorial Hospital (CCMH) is committed to protecting the privacy of its patients and maintaining the highest…
117 Million LinkedIn Emails And Passwords up for sale (Updated)
Lorenzo Franceschai-Bicchierai reports: A hacker is trying to sell the account information, including emails and passwords, of 117 million LinkedIn users. The hacker, who goes by the name “Peace,” told Motherboard that the data was stolen during the LinkedIn breach of 2012. At the time, only around 6.5 million encrypted passwords were posted online, and LinkedIn never…
UK: Cambridgeshire County Council’s data breach shockers – Big Brother Watch
Big Brother Watch cites a Cambridge News article from May 13, but I can’t seem to load the original article, so am using BBW’s report: Elderly care papers held by an agency were found dumped in a bin as part of a shocking series of data breaches by Cambridgeshire County Council, the News can reveal….
Patient appointment booking service notifying patients of potential breach
Zocdoc, an online booking system for dental or medical appointments, is first notifying patients almost one year after they learned programming errors enabled providers to access patient information they should not have had access to. In June, 2015, Zocdoc reportedly learned that a programming error had allowed some past or current practice staff members to access…
Open records request goof exposes personal info of 36,000 Poway USD students and their parents
Yet another breach in response to an open records/freedom of information request, this one affecting 36,000 Poway Unified School District students in California. CBS reports: The privacy breach leaked information about every student in the district and it included: medical information, home addresses, nicknames, birthdates, student grades, test scores and parents’ sensitive occupations. The San Diego…