Liam Hyslop reports: Vodafone is experiencing a serious privacy breach – people with a master password are able to access private customer information, including credit card details. The loophole was discovered by a new Vodafone customer, who said he accidentally accessed another Vodafone customer’s account with the password when he was trying to get into…
Category: Exposure
MS: Police reports with sensitive information end up in dumpster
WAPT reports that after receiving a tip from a viewer, reporter Stephanie Maxwell went dumpster diving and turned up trash bags full of Jackson Police Department reports containing loads of personal information. The bags were in a dumpster outside Precinct 4. JPD responded that someone didn’t follow procedure and would be retrained. But had this…
DK: 900,000 residents’ social security numbers leaked (updated)
This is going to be a bit shaky, as it’s based on Google translator, but George Bendsen seems to be reporting that the Social Security Office of Economic Affairs and the Interior Ministry accidentally exposed 900,000 Danish citizens’ Social Security numbers. It happened in the “Robinson list,” a list of Danes who do not want direct mail…
Goldman says client data leaked, wants Google to delete email (update2)
Jonathan Stempel reports: (Reuters) – Goldman Sachs Group Inc said a contractor emailed confidential client data to a stranger’s Gmail account by mistake, and the bank has asked a U.S. judge to order Google Inc to delete the email to avert a “needless and massive” breach of privacy. The breach occurred on June 23 and…
Booking site HotelHippo.com in ‘appalling’ data leak
Dave Lee reports that a simple url manipulation exposed customers’ information: A hotel booking website that was leaking large amounts of customer information is being investigated by the UK data privacy watchdog. HotelHippo.com, owned by HotelStayUK, had revealed booking information that had been a “gift for burglars”, a security expert said. The exposed data could allow the…
UK: Oxfordshire County Council signs undertaking after loss of records with sensitive information
An undertaking to comply with the seventh data protection principle has been signed by Oxfordshire County Council. This follows an investigation into a July 2013 incident when a solicitor had removed a number of documents from the office but had dropped these in a street near their home. The documents were found the next day…