Mila Koumpilova reports: The Minnesota Department of Education improperly released the transcripts of 20 students at the online BlueSky Charter School in November, the department acknowledged Friday. The department uncovered the privacy breach this week while processing a new data request regarding the school, spokeswoman Charlene Briner said. Commissioner Brenda Cassellius, who took over the…
Category: Exposure
UK: Wiltshire Council documents found in wheelie bin
An investigation has been launched after a bag full of birth registrations and internal council emails was found in a household bin in Wiltshire. A couple from Westbury found the Wiltshire Council documents in their wheelie bin soon after it had been emptied. The documents were traced back to Trowbridge. A council spokesman apologised and…
Amazon.com Security Flaw Accepts Passwords That Are Close, But Not Exact
Dylan Tweney reports: An Amazon.com security flaw allows some customers to log in with variations of their actual password that are close to, but not exactly, their real password. The flaw lets Amazon accept as valid some passwords that have extra characters added on after the 8th character, and also makes the password case-insensitive. For…
MA: Students’ Personal Data Posted Online
Team 5 Investigates has learned that the personal information of as many as 1,300 current and former students at the Wentworth Institute of Technology was inadvertently put online. School officials notified all affected students of the data breach, which was reported to WIT on Dec. 22. The letter said that an “electronic file was accessible…
Error sends University of Missouri health insurance mail to wrong addresses
Adam Dodge of ESI sends along this news story by Ladd Egan: Hundreds of participants of University of Missouri’s health insurance program are being told to be on the look-out for insurance fraud after several hundred insurance communications were mailed to the wrong person. Health benefit statements, health services letters and new ID cards were…
UK: Somerset schools’ website security ‘breached’ by Southwest One
Rory McKeown reports: Claims have been made that Southwest One published security passwords for every school website in the county online. An unnamed source contacted this website claiming someone from the venture allegedly performed the “massive security breach” while updating the website itsc.co. uk. They allege security passwords for every school in Somerset and other…