Oops. It appears that somehow, Berkeley Endocrine Clinic had spam sent to a number of its patients. Trying to address that, they sent out an email to all patients. Unfortunately, as Dr. Omar Murad explains, the patients’ names and email addresses showed in the TO: field: On April 22, 2016, my office was subject to a spam…
Category: Exposure
AU: Email fail at Do Not Call Register, thousands of contacts exposed
Brendon Foye reports: Thousands of email addresses were exposed yesterday in an email sent on behalf of the Do Not Call Register. […] In an email sighted by CRN sent yesterday, DNCR Support informed about a planned service outage scheduled for 25 May. The email contained more than 2,000 email addresses in the “To” field….
NLC leaks its Private keys and sensitive information – A heartbleed Hack on NLC
Manoj Kumar Thambulingam reports: NLCIndia.com—one of the Indian Government Navarathna award winning public sector enterprise, providing several services through web interface — has reportedly been hacked , exposing the site’s user credentials.NLC (Neyveli Lignite Corporation) is an Indian Goverment owned Lignite mining and power generating company . And it was one of the elite company of India. It…
A second inadequately secured Mexican voter list exposes data on more than 2 million voters
MacKeeper security researcher Chris Vickery writes: This is just a quick note to explain that I discovered another publicly exposed Mexican database on Wednesday, May 20th. I reported it to the Mexican electoral authority (INE) that same day. Today, INE held a press conference and reported that the database has been taken offline. Their initial…
Children’s Educational Site Exposes Thousands of User Accounts and Payment Data
Another child-oriented site has exposed information due to a misconfigured MongoDB installation. This time, it’s ABCya.com, according to the MacKeeper security research team. Here’s what they reported they found exposed: credentials and information of 11k+ archived customers (including IP addresses, email addresses, names, temporary access codes, hashed and salted passwords) credentials and information on 21k+ active…
Comanche County Memorial Hospital notifies 2,199 patients after contractor’s email gaffe
On April 25, Comanche County Hospital Authority notified HHS that 2,199 patients were affected by an email incident. From their press release: Comanche County Memorial Hospital issues public notice of HIPAA Breach Lawton, OK (April 27, 2016) – Comanche County Memorial Hospital (CCMH) is committed to protecting the privacy of its patients and maintaining the highest…