OK, first I noticed a paste on Pastebin.htm on December 30 by a “guest” that simply listed domain names: www.deutsche-stimme.de www.ds-versand.de altermedia-deutschland.info flutopfer.npd-sachsen.de gfp-netz.de naweko.de nein-zum-euro.de npd-bremen.de npd-sachsen.de stehar.com tinten-sachse.de www.frank-franz.de www.holger-apfel.de www.naweko.de www.nno-tv.de www.npd-dresden.de www.npd-fraktion-burgenlandkreis.de www.npd-fraktion-sachsen.de www.npd-kronach.de www.npd-leipzig.net www.npd-nol.de www.npd-sachsen.de www.npd-weissenfels.de NPD is the extreme right-wing party in Germany, so the paste caught my…
Category: Exposure
Credit Mutuel Units Inspected by French Data Protection Watchdog
Heather Smith reports: Two Credit Mutuel-CIC units were inspected by France’s data protection authority following a data system failure reported on Dec. 28 by weekly newspaper Canard Enchaine, the Paris-based watchdog said today. The Commission Nationale de l’Informatique et des Libertes searched an information-technology unit in Strasbourg, France, and a newspaper belonging to the bank in…
United flyer finds dozens of passengers’ info online
Keli Rabon reports: Anna Culina just wanted to check her miles on United Airline’s mobile website, but instead, she ended up with a whole lot more. “I was navigating around activity and statements, and each time I navigated around to a different area, I pulled up someone else’s information,” Culina said. Culina found the personal…
AU: Telstra BigPond customer details exposed online
Mitchell Bingemann reports: TELSTRA has been stung by another embarrassing privacy breach after the email addresses and phone numbers of more than a thousand of its BigPond customers were made accessible online. In what appears to be a repeat of another security compromise for Telstra, an online spreadsheet containing customer names, email addresses and details…
Virginia database with Social Security numbers available to public for 10 years
Steve Contorno reports: A state database containing sensitive information, including more than 600 Social Security numbers, was available to the general public through the Virginia Department of General Services website since 2001. The department announced Friday that the site is now secure, and it is notifying affected individuals. The state does not believe the sensitive…
Thousands of domain registrar’s customer details exposed
Lia Timson reports: More than 28,000 Melbourne IT customers have had their details emailed to others in an embarrassing privacy breach by the domain registrar. Each year the registrar is obliged by the Internet Corporation for Assigned Names and Numbers (ICANN) to send a reminder to customers to ensure it keeps registrant information up to…