Randy Westergren looked into Christiana Care’s online payment portal, which involves a third party payment processor developed by BYL Companies, LLC. What Randy found was very concerning, and he promptly notified BYL of his findings. You can read his write-up of it all on his site. So here’s the thing: how many people may have actually exploited the vulnerability…
Category: Exposure
NY: Nurse who took pics of patients’ private parts at Syracuse hospital turns in license
James T. Mulder reports a follow-up on a very disturbing patient privacy breach: A nurse who took photos of an unconscious [SUNY] Upstate University Hospital patient’s penis with her smart phone has turned in her nursing license. The state Education Department announced it has approved a request from Kristen Johnson, 27, of Fulton to surrender her…
Thailand: Sensitive info about tourists revealed in 2nd online data leak
Asian Correspondent reports: Another data leak involving foreigners in Thailand has apparently been uncovered barely a week after sensitive personal information of foreigners living in the country’s southern provinces was revealed to have been to be hidden in plain sight. This time the details of the foreign travelers, including their most recent vaccine shots, real names, nationalities, passport…
Chinese Browsers Leave Users Vulnerable, Report Says
Dow Jones Business reports: China’s top three Web browsers collected and transmitted data in insecure ways, making hundreds of millions of users’ personal information vulnerable to unauthorized access, according to a human-rights research group. In a report published Tuesday, the University of Toronto’sCitizen Lab said Tencent Holdings Ltd.’s QQ Browser had been transmitting users’ data…
GA: Non-profit director leaves town and abandons donations and clients’ personal information
WRDW reports: The director of the non-profit organization, Community in Action, left town and abandoned donations along with her clients’ personal information. Her landlord discovered copies clients’ social security cards, drivers’ licenses and birth certificates left in the home. Trish Wilcher took back possession of her rental home just a few weeks ago. She rented…
Update to #InvestBank hack?
I had reported on a hack and extortion demand involving InvestBank back in November and December of 2015. The bank hadn’t paid the extortion demand by “Hacker Buba” and massive amounts of data had been dumped. This week, there was an update to the incident. I’m not sure what to make of it, but a…