Readers of PoPville report: “Just applied for the new DC digital SMART Health Card and was sent someone else’s vaccine record?! Hopefully you’re not sending my vaccine card to other random people??” and “Received notification from DCHealth about digital vaccine record. Went to the site and signed up using DOB; PIN; and first and last name. Received…
Category: Exposure
Sask. Health Authority accidentally outs employees that were part of mandatory COVID testing program
Yasmine Ghania reports: About 200 Saskatchewan Health Authority (SHA) employees were accidentally identified by name in an email as participants of the organization’s now-scrapped mandatory testing program. The SHA ended its vaccine and testing mandate Monday. Before that, its approximately 44,000 employees had to provide proof of vaccination or enrol in a mandatory testing program…
Au: Sensitive business addresses among 500,000 published in COVID data breach
Jonathan Kearsley and Clair Weaver report: The addresses of more than 500,000 organisations including defence sites, a missile maintenance unit and domestic violence shelters were inadvertently made public in the first major breach of the NSW government’s massive trove of QR code data. Premier Dominic Perrottet said the information was uploaded in error and the…
Ca: Military sexual misconduct settlement hit by privacy breach
Lee Berthiaume reports: The company administering the federal government’s $900-million settlement deal with Armed Forces members and veterans who experienced sexual misconduct while in uniform has inadvertently released private information about dozens of claimants. Epiq Class Action Services Canada confirmed the privacy breach on Wednesday, after a veteran said she had received an e-mail last…
Inmediata Data Breach $1.1M Class Action Settlement
In April 2019, Puerto-Rico headquartered Inmediata issued a press release concerning a data leak it had discovered in January of that year. The business associate’s press release explained, in relevant part: In January 2019, Inmediata became aware that some electronic health information was viewable online due to a webpage setting that permitted search engines to index…
Donation site for Ottawa truckers’ ‘Freedom Convoy’ protest exposed donors’ data
Zack Whittaker reports: The donation site used by truckers in Ottawa who are currently protesting against national vaccine mandates has fixed a security lapse that exposed passports and driver licenses of donors. […] TechCrunch was tipped off to the data lapse after a person working in the security space found an exposed Amazon-hosted S3 bucket…