Brian Krebs writes: On Monday, KrebsOnSecurity notified the Municipal Bond Insurance Association — the nation’s largest bond insurer — that a misconfiguration in a company Web server had exposed countless customer account numbers, balances and other sensitive data. Much of the information had been indexed by search engines, including a page listing administrative credentials that attackers could use to…
Category: Exposure
UK: Housing association publishes thousands of tenants’ private details in online data breach
Max Salisbury reports: A Midlands-based housing association has been slammed after it somehow managed to publish the private and intimate details of thousands of its tenants online. South Staffordshire Housing Association (SSHA) published residents’ names, telephone numbers, addresses, family affairs and health details on the ‘Contact Us’ page of its website. Though the private data…
Purdue Calumet possibly hacked
Carmen McCollum reports: A student data system at Purdue University Calumet may have been hacked. Purdue Calumet spokesman Wes Lukoshus said the university received information Tuesday night that one of its information systems that includes student information was vulnerable. It was someone from the West Lafayette campus who identified the vulnerability of one of Purdue…
UK: Northmavine parents lodge SIC privacy complaint
Neil Riddell reports: Parents in Northmavine have lodged a formal complaint about what they describe as a “blatant breach” of data protection during a school closure consultation, and are calling on Shetland Islands Council to “ensure our privacy is taken seriously”. Last week the local authority issued an apology after personal details relating to “a small number of…
Minnesota student loan data breach not criminal, review shows
Debra O’Connor reports: State computer experts found no evidence of criminal activity when private student data was exposed on the website of a student loan program, according to the Minnesota Office of Higher Education. “We did the big deep-dive security analysis and discovered, of all the log-ins to that site, there were only three that…
G.O.P. Error Reveals Donors and the Price of Access
Jonathan Weisman reports: In politics, it is sometimes better to be lucky than good. Republicans and Democrats, and groups sympathetic to each, spend millions on sophisticated technology to gain an advantage. They do it to exploit vulnerabilities and to make their own information secure. But sometimes, a simple coding mistake can lay bare documents and…