Keegan Brooks writes: The DeKalb County School District has been making thousands of files containing sensitive student and staff information widely accessible to anyone in the district. Types of information exposed have included social security numbers, academic records, medical forms, course transcripts, standardized test scores, discipline records, and the 504/IEP information of students, among others….
Category: Exposure
University of Essex data breach being taken ‘very seriously’
BBC reports: A data breach affecting more than 400 students is being treated “very seriously”, the University of Essex said. Law firm Hayes Connor, which is representing some students, said an email from an external partner of the college included personal information. A spreadsheet containing student IDs, dates of birth and contact details was attached…
Breast Cancer Support Organization Leaks Data Despite Multiple Notifications?
Update: After posting this, tweeting this story, and getting retweets on it, it appears that as of late yesterday, the bucket was finally secured. Thanks to SafeyDetectives who kept re-checking the bucket and to everyone who tried to call attention to this to get the data locked down. DataBreaches did not get any acknowledgement or…
Alleged docket dumping probed (South African Police Service)
Natasha Bezuidenhout reports: Police are investigating allegations which claim police files, dockets and rape kits from Steenberg Police Station were found discarded at a dumping site. Ward 68 councillor Marita Petersen claimed she found remnants of police dockets and rape kits dumped in Steenberg since the beginning of April. Read more at News24
This Israeli Helped One of the World’s Biggest Jewish Organizations – Now He’s in Trouble
Ran Bar-Zik reports what sounds like a situation where a cybersecurity student who engaged in responsible disclosure after finding a leak at the scholarship application website of the American Joint Distribution Committee (“the Joint”) felt pressured and anxious by the Joint trying to get him to sign a statement afterwards. And so far, he hasn’t…
COVID-19 patient sues Health P.E.I. for privacy breach at hospital
Brian Higgins reports: A man who says he was the first person on Prince Edward Island to be hospitalized for COVID-19 is suing Health P.E.I. for breach of privacy. According to a civil suit filed in P.E.I. Supreme Court, information about the man’s medical condition, including the fact that he is HIV-positive, was leaked by…