John Leyden reports: Metro Bank, the newly established UK retail bank, has irked its customers with a schoolboy email error. The latest marketing missive from the bank was sent using all the email addresses in to To: field instead of using the bcc (blind carbon copy) field. In the process, the bank disclosed the email…
Category: Exposure
(update) NZ: National admits Labour data breach – but denies passing names to Whaleoil
NZPA and NBR staff report the latest in the Labour Party donor list breach reported on this blog last night: The National Party has admitted exploiting a security hole in the Labour Party website but denies passing data to a right-wing blogger who plans to release the names of Labour Party donors. The Privacy Commissioner…
NZ: Labour apologizes over data breach (update1)
The New Zealand Press Association reports: The Labour Party has apologised to donors, after a right-wing blogger said he would release their personal details following what the party called a malicious breach of its website. In an email sent to donors yesterday, party secretary Chris Flatt said an investigation was launched after the discovery of…
Southern California Medical-Legal Consultants reveals that 300,000 workers’ compensation applicants’ names and Social Security Numbers were exposed on internet
Remember how Heartland Payment Systems took a lot of heat for announcing their breach at a time that coincided with President Obama’s inauguration? Since then, a lot of entities have been bashed a bit over the timing of their breach disclosures. As someone who tracks breaches, it became almost a given that I would find…
TX: Data breach may affect 4,900 state workers
Is there any state employee left in Texas who hasn’t had their data breached this year? Chuck Lindell reports: The Department of Assistive and Rehabilitative Services has begun notifying 4,900 current and former employees that a security breach may have exposed their personal information.Personal information for employees of other agencies — the former Texas Rehabilitation…
UK: ICO issues monetary penalty of £120,000 to Surrey Council over misdirected emails
Three strikes and you’re out, it seems. The Information Commissioner’s Office has just issued a monetary fine to Surrey Council after repeated instances of misdirected e-mails containing personal information. From the press release: The Information Commissioner’s Office (ICO) today served Surrey County Council with a monetary penalty of £120,000 for a serious breach of the Data Protection…