Insurance carriers, third party administrators (TPAs), and self-insureds had claims data exposed when a cloud-hosted claims management service inadvertently left their databases and files unprotected on a public server. Another week, another infosecurity failure that exposed oodles of personal information. This time, it’s a leak that not only exposed insurance claims data, but allegedly included internal documents that reveal how…
Category: Exposure
NC: Charlotte-Mecklenburg Schools notifies 7,600 job applicants of privacy breach
Adam Bell reports: Charlotte-Mecklenburg Schools has notified about 7,600 job applicants that their personal information, including Social Security numbers, was shared with an outside contractor without their consent. […] In a statement Tuesday morning, CMS said that one of its employees entered into an agreement with a vendor prior to obtaining proper authorization, and that resulted…
NZ: Police file leak ‘could put lives at risk’
Radio New Zealand reports: Police say that sensitive, secret files have been mistakenly sent to a defence lawyer and have been widely circulated. A criminal lawyer who has seen the files said they contained details about informants, criminal activity and police surveillance that could put people at risk. The mistake occurred when a standard criminal…
UK: Kinver headteacher apologizes after confidential pupil documents found in field
Dan Sharp reports: A headteacher has issued a heartfelt apology after confidential documents about pupils were found blown across the school’s field. Documents profiling seven students with special educational needs (SEN) from Kinver High School and Sixth Form were discovered by village resident Ian Macey while he was out walking his dog. The Individual Learning Profiles…
License to connive: Boston still tracks vehicles, lies about it, and leaves sensitive resident data exposed
Kenneth Lipp reports: Prior to two weeks ago, when this reporter alerted authorities that they had exposed critical data, anyone online was able to freely access a City of Boston automated license plate reader (ALPR) system and to download dozens of sensitive files, including hundreds of thousands of motor vehicle records dating back to 2012. If…
Heritage Foundation confirms that breach was a leak, not hack
As an update to the Heritage Foundation data leak previously covered here: Politico reporter Dave Perera got in touch with me about my reporting that The Heritage Foundation (THF) was not hacked – as they had claimed – but had had a leak. Perera and Tim Starks have now reported that they got confirmation from THF that yes, it was…