For today’s episode of “No Need to Hack When It’s Leaking,” DataBreaches brings you three leaks involving patient/medical information: one from the U.S., one from India, and one from Australia. Tridas Center Jeremiah Fowler and the Website Planet research team discovered an unsecured database containing more than 16,000 records with personally identifiable information about pediatric…
Category: Exposure
Community Health Network notifies patients of meta pixel breach
Community Health Network in Indiana has become the latest healthcare entity to notify patients that their protected health information was transmitted via trackers on their website from Google and Meta. Their FAQ page attempts to explain it in basic English and does a good job, but there’s no getting around this: Any individual who visited…
Personal data of over 30,000 students leaked from Kannur University’s official website
Mathrubhumi.com reports: The personal data of over 30,000 students at Kannur University were reportedly leaked. A private cyber security agency in Kochi found that the data were published on a dark web portal. As per the preliminary assumption, the data of the students were leaked due to a technical glitch in the university’s official website….
UK: Reading clinic leaked the email addresses of 288 patients in an emailed invitation
Jay Jay reports: The South Reading & Shinfield Group Medical Practice, a healthcare clinic in Reading, recently leaked the email addresses of many of its patients after clinic officials included their email addresses in an emailed invitation. Source: Teiss
U.K.: Suffolk police publish sensitive info of sexual assault victims online in data protection failure
Why would other victims ever come forward and report their assaults when they cannot trust the police to protect their reports? This is an appalling breach, and an “investigation” isn’t going to undo any harm that has been done. What exactly is going to be done to mitigate harm to the victims of this data…
NL: Land Registry data leak: Protected addresses accessible for nearly a month
NL Times reports: A data leak at the Land Registry meant that protected residential addresses were visible and accessible between September 18 and October 11, the organization that manages real estate confirmed to the Volkskrant. According to the Land Registry, the leak occurred during a recent system update, and it notified the Dutch Data Protection Authority. The…