Dave Lee reports that a simple url manipulation exposed customers’ information: A hotel booking website that was leaking large amounts of customer information is being investigated by the UK data privacy watchdog. HotelHippo.com, owned by HotelStayUK, had revealed booking information that had been a “gift for burglars”, a security expert said. The exposed data could allow the…
Category: Exposure
UK: Oxfordshire County Council signs undertaking after loss of records with sensitive information
An undertaking to comply with the seventh data protection principle has been signed by Oxfordshire County Council. This follows an investigation into a July 2013 incident when a solicitor had removed a number of documents from the office but had dropped these in a street near their home. The documents were found the next day…
‘Possible data security breach’ at College of the Desert
Brett Kelman reports that College of the Desert has had a second breach this month, this one involving student financial information. The college says that less than 10 students were affected by what it describes as a “possible data security breach.” Approximately 1900 employees were affected by an earlier breach this month. COD officials on Thursday did…
Personal files from late Orlando attorney’s office thrown in dumpster
Shell Muniz reports: An Orlando woman is angry after finding out her private information was tossed into a dumpster without being shredded — and hers wasn’t the only information that got treated that way. The files appear to belong to clients of Frank Bartolomeo at The Baldwin Park Law Firm. The attorney passed away last…
Ca: Surrey school district accidentally emails out student information
Christopher Poon reports: The Surrey school district is apologizing to parents and students after the personal information of about 250 students was mistakenly sent out as part of a school’s online newsletter. According to district spokesman Doug Strachan, a staff member at a Surrey school was sending out a letter to parents from the…
CO: Summit School District corrects security breach that leaked student information
The Summit Daily reports: Last week Summit School District officials discovered a security issue that made some student and parent information available online. […] The information the parent found came from an internal student data file the district used for automated calls to parents about their children’s negative food account balances. The file contained the…