An announcement by HHS on Feb. 16 seems to have flown under most media radar. It seems that Complete P.T. used patient images and testimonials on their web site without patient consent, generating a complaint to HHS that HHS investigated and confirmed. Complete P.T. has admitted liability, agreed to pay $25,000, and has agreed to a…
Category: Exposure
ORCID Security Incident
ORCID describes itself as an “open, non-profit, community-based effort to provide a registry of unique researcher identifiers and a transparent method of linking research activities and outputs to these identifiers. ORCID is unique in its ability to reach across disciplines, research sectors, and national boundaries and its cooperation with other identifier systems.” The following notice was…
WI: Vilas County jail inmates had personal info disclosed online
Jamie Taylor reports: About 85 inmates at the Vilas County Jail on Jan. 14 inadvertently had their social security numbers and other personal information posted online for about four hours. According to Vilas County Sheriff Joe Fath, the information was posted when a new corrections employee posted the wrong computerized report. Read more on Lakeland…
Twitter: Fixing a recent password recovery issue
Oops. It looks like my beloved Twitter had a security issue. From a blog post yesterday: We recently learned about — and immediately fixed — a bug that affected our password recovery systems for about 24 hours last week. The bug had the potential to expose the email address and phone number associated with a…
IN: 40 people notified after tax documents found in dumpster
Following up on the station’s earlier report, Paris Lewbel reports: Nearly 40 people have been notified by the Indiana Attorney General’s Office after their tax documents were found in a dumpster. Many of the people were not Indiana residents. […] The Indiana Attorney General also sent a letter to the nearby tax preparer to find…
Hundreds Of Spotify Premium Accounts Exposed Online (Again)
Shelby Carpenter reports: The black-hat hacker world is at it again–this time, publishing hundreds of Spotify Premium user accounts online. The user info appeared in three different online data dumps on Pastebin starting on Monday. Each dump contained email addresses with their corresponding passwords for Spotify. For some accounts, home countries, account types (such as premium or…