Robert Maxwell reports: Thousands of private financial documents were discovered sitting in a wide open community recycling dumpster on Thursday. KXAN received a ReportIt tip late Thursday morning that the dumpster was full of personal documents from a local home builder. We discovered home loans, copies of personal checks, purchase orders and site plans all on display…
Category: Exposure
Some TD Bank customers’ information sent to other customers
Jennifer Gannon reports Some customers of TD Bank had their information sent to other customers because of what the bank called a vendor error. TD Bank said a national firm responsible for printing and mailing statements accidentally sent some customers statements that had other customers’ information on the back. Stephania Pearce was balancing her checkbook…
Oh, those hidden fields in Excel spreadsheets: Columbia University Medical Center notifies students of breach
It seems that Columbia University Medical Center inadvertently exposed the Social Security numbers of 138 medical students from the graduating class of 2013 in an Excel spreadsheet sent to faculty, students, and staff. CUMC became aware of the breach on March 15. The breach occurred because the Excel spreadsheet with residency match lists for the graduating…
Errors by both Sentry Life Insurance and the Department of Labor expose 401k participants’ information online
Sentry Life Insurance is a service provider for many companies’ 401k plans. In that capacity, they assist clients in the preparation of, and submission of, the plans’ Form 5500 to the Department of Labor. On July 2, Sentry discovered that some plans’ Form 5500 submissions to DOL contained an attachment with the individuals’ names, Social Security numbers,…
MNsure employee responsible for e-mail attachment breach no longer employed at MNsure
The MNsure employee who erroneously attached a spread sheet with 1,587 insurance agents’ names and Social Security numbers to an e-mail to one insurance agent is no longer working for MNsure. The Associated Press’s coverage adds that the employee violated internal policy by storing unencrypted personal information about Minnesota insurance agents on a computer desktop. The agency…
Audit of State University of New York at Albany reveals to-be-surplussed devices certified as “clean” still contained PII
I periodically post audits from the NYS Comptroller Thomas DiNapoli’s office pertaining to data protection. A recently released audit of SUNY-Albany reminds us that we need to continue to be concerned about inadequately wiped devices or drives that are to be surplussed. The audit period covered January – May 2012, and during that time, SUNY-Albany…