Sarah Michael reports: Witchery has shut down its mobile website after it was hit with a security breach that exposed customers’ personal details and orders. A glitch in the “track my order” function for online shopping opens personal details pages of other customers, and even allows them to edit the information. It also allows them…
Category: Exposure
Chicago Public Schools’ students’ health data accidentally posted online
Backy Schlikerman reports: A small amount of Chicago Public Schools’ students’ health data was accidentally posted online, but the issue is fixed, the city of Chicago announced Friday. Data collected about some 2,000 student who participate in a free vision examination program provided by the city was “incorrectly configured” and was available on the Internet,…
UK: An undertaking serves as a reminder that all employees need to be trained on data protection
The Information Commissioner’s Office (ICO) notes that an Undertaking has been signed by the Royal Borough of Windsor & Maidenhead, following an incident in which restricted information about 257 employees was disclosed on its intranet in error. The incident occurred in January of 2013 when a spreadsheet with details on employees who had not signed…
MD: Sensitive info found in now-defunct law group’s dumpster
A now-defunct law firm gets itself bad press for insecurely disposing of client files: We’re not in the habit of picking through the trash, but sometimes we’re willing to get our hands dirty, especially when we hear your information has been tossed aside like it’s worthless. We went digging in a Baltimore County dumpster after…
QuizUp security flaw sends your personal data to other players
You may want to hold off on playing popular trivia game QuizUp, as the game may be sending your personal information to other players. This security and privacy flaw was detected by developer Kyle Richter and described in a recent blog. According to Richter, the QuizUp game sends your personal information to other players via…
UT: Cop fat-fingers speeding citation and discloses another motorist’s SSN and details to the wrong driver
Devon Dolan reports: Mark Allen said he was recently pulled over for speeding in Heber City. he said the gave the police officer his license and registration information, but when he received his citation, it had someone else’s information on it. “When I got home, I looked at it and it wasn’t my name,” Allen…