Asher Moses reports that the Pillar Administration coding that left First State Super clients’ account information viewable online by simple url manipulation also affected three other superannuation funds and the federal government is delaying a contact it had with Pillar until its security is assured: The federal government has been in daily contact with the…
Category: Exposure
Wells Fargo responds to breach report involving mail collation error
Wells Fargo sent DataBreaches.net the following statement about the breach reported in mainstream media earlier today: Some of our customers with accounts established in South Carolina and Florida may have received in error pages from other customer accounts in their September paper statements. (Note: Online accounts were unaffected by this error.) The error occurred due…
FL: Wells Fargo Customers Got Someone Else’s Financial Information (update 2)
Mike Lyons reports that a mailing error by Wells Fargo in Florida exposed customers’ bank account information to each other. Social Security numbers were not involved, but bank account numbers, balances, and transactions were. Ugh. Update: This may be a regional or national problem, as other parts of the country are also reporting complaints from…
UK: Probe at Edge Hill University after student data breach
Rob Pattinson reports: A (sic) investigation has been launched after personal details of nearly 800 Edge Hill University students were sent out in an email. The email, sent by a university staff member to 53 students, mistakenly contained 798 other students’ addresses, email addresses, course enrolment details and student network passwords. The university told the…
In the wake of really bad press, First State Super walks back its threats against researcher
Some updates to the First State Superannuation breach reported previously: 1. First State will not be taking legal action against Patrick Webster, the customer and IT security expert who alerted them to the breach. 2. The Australian Privacy Commissioner will investigate the breach. 3. On October 19, First State issued a statement linked from their home…
UK: Housing group emailed workers’ details to wrong address
As a follow-up to a breach previously reported on this site, the Information Commissioner’s Office found that a private housing group breached the Data Protection Act by sending the personal data of 200 employees to the wrong email address. In March of this year, an employee of Spectrum Housing Group accidentally emailed a non-secure excel…