After Equifax recently sent out IRS W-2 statements to most of its current employees and some former employees, they discovered that some employees’ control ID numbers were partially or completely viewable in the return address window of the envelope used by the payroll vendor. In an unspecified number of cases for U.S. employees, the control…
Category: Exposure
Widespread Data Breaches Uncovered by FTC Probe
The Federal Trade Commission has notified almost 100 organizations that personal information, including sensitive data about customers and/or employees, has been shared from the organizations’ computer networks and is available on peer-to-peer (P2P) file-sharing networks to any users of those networks, who could use it to commit identity theft or fraud. The agency also has…
TN: TennCare sent data to wrong people
Nicole Young and Chris Echegaray report: A corrupted file on a state computer caused incorrect addresses to be put on cards and letters mailed to some 3,900 TennCare enrollees, sending names, birth dates and Social Security numbers to the wrong people, state officials said Friday. Those whose personal information was released will be notified by…
Microsoft Examining If Web Users Saw Others’ Accounts (Update2)
Dina Bass reports: Microsoft Corp., whose Internet- identification service was partly shut down for an hour this morning, is looking into reports that a “limited number” of customers were able to gain access to other users’ accounts. The breach occurred when users were trying to get into their own accounts using a mobile-phone Web browser,…
Social Security Numbers printed in SWFL newspapers
Nick Spinetto reports: WINK News discovers social security numbers printed in several local newspapers!…. The social security numbers were printed in the Estates Notices section of the newspaper. It’s not required by law to have the numbers printed, but in one local newspaper alone, we found social security numbers to two people. “Social security numbers…
ING Fund client data exposed on the web for 18 months
On January 25, when an ING customer discovered that she could access client information on the ingfunds.com web site, she notified her stockbroker. In investigating the situation, ING discovered that since August 2008, a file containing the names, addresses, Social Security numbers, and account numbers of 106 ING shareholders had been available on the web…