From the no-need-to-hack-if-it’s-leaking dept., WBTV reports: Charlotte-Mecklenburg Schools sent an email to hundreds of parents that included person and medical information of nearly 3,000 students. The CMS email was to confirm all students who were enrolled in the After School Enrichment Program (ASEP). It was sent out the afternoon of August 6 and went to…
Category: Exposure
UK: NHS Highland apologizes after data security breach
Tom Ramage reports: Letters inviting patients at NHS Highland for their second dose of Covid vaccine were produced by NHS Highland Public Health carrying information relating to other patients. A spokesperson has explained: “These letters each contain the name and address of the patient along with the date, a time slot and a location they…
Data leak affects about 3,000 NYC students and 100 employees, officials confirm
Pooja Salhotra reports: Personal information, including academic records and biographical data, of about 3,000 New York City public school students and 100 education department staff members was inadvertently shared more widely than intended, education department officials confirmed on Thursday. At least one student within the public school system managed to access a Google Drive that…
AU: Optus under investigation for White Pages privacy breach
Tom Biggs reports: Regulators have opened an investigation into Optus for potential breaches of the Privacy Act, following an incident in which the telco accidentally sent off thousands of customers’ contact details to be published in the White Pages directory against their wishes. In October 2019 Optus contacted almost 50,000 customers to inform them of the privacy…
Northern Ireland’s COVID certification service suspended after data leak
Ax Sharma reports: Northern Ireland’s Department of Health (DoH) has temporarily halted its COVID-19 vaccine certification online service following a data exposure incident. Some users of COVIDCert NI app were presented with data of other users, under certain circumstances, says the Department. As seen by BleepingComputer, neither the web service nor the mobile app functionality is accessible at the time…
Trump-loving Republicans snatch up “magacoins” — and quickly fall victim to data breach
Travis Gettys reports: More than 1,000 people — including Republican leaders and conservative media personalities — have already signed up for the pro-Donald Trump cryptocurrency magacoin. Poor security on a website associated with the cryptocurrency exposed users’ personal information, including passwords and IP addresses, and revealed that the vast majority of the magacoin produced has…