Sometimes people who find documents with personal information don’t know to whom to return them. Other times, they may know, but refuse to return them or stall in returning them. And yet others may decide to go to the media. Why people make the choices they make is beyond the scope of this blog, but…
Category: Exposure
Private tracker member data leaked via BBCode exploit
Andy of TorrentFreak writes that a vulnerability in a popular private tracker, SceneAccess, enabled a security expert to extract private data about site members and staff and attach usernames to IP addresses. The possibility remains, Andy writes, that other sites are also affected. Read more on TorrentFreak.
Non-profit Code.org notifies volunteers whose email addresses were exposed
From Code.org’s blog, yesterday: Some volunteer email addresses compromised đ On Friday night we discovered and fixed an error in the Code.org site that allowed access to our volunteer email addresses. This wasnât a case of hackers breaching our security systems, rather it was our mistake of leaving volunteer email addresses accessible via the web…
Hackers Claim Breach Of Ku Klux Klan’s Security Company, Staminus (update2)
Thomas Fox-Brewster reports: A website run by the Ku Klux Klan has been downed as part of what appears to be a significant breach of its host and security provider Staminus. The company, which promises to protect users from distributed denial of service (DDoS) attacks, was exposed by a crew going by the name of FTA,…
Plaintiffs Use Privacy Pledge Against Insurer in Data Breach Claim
Armeen Mistry and Matthew Siegel of Cozen O’Connor write about a lawsuit over a data breach in 2014 that I don’t remember ever hearing about before.  Whether plaintiffs will be able to show injury is down the road. For now, they survived a motion to dismiss: On February 23, an Illinois federal court denied a motion to dismiss a…
Data Breach Notification: Islamic State Human Resources & Recruiting
Steve Ragan helps out Daesh by creating a data breach notification letter for them to use in the wake of an insider breach that resulted in info on 22,000 Jihadis being in the hands of Sky News (and now governments): Data Breach Notification: Islamic State Human Resources & Recruiting Enjoy.