On January 25, when an ING customer discovered that she could access client information on the ingfunds.com web site, she notified her stockbroker. In investigating the situation, ING discovered that since August 2008, a file containing the names, addresses, Social Security numbers, and account numbers of 106 ING shareholders had been available on the web…
Category: Exposure
Shell staff details leaked to campaign groups
Ed Crooks provides more background on a breach involving Shell employee contact information: The database, from Shell’s internal directory, gives names and telephone numbers for its workforce worldwide, including some home numbers used for business. The e-mail was ostensibly sent by disaffected staff calling for a “peaceful corporate revolution” at the company. The database was…
Equifax tax forms expose worker Social Security numbers
Elinor Mills reports: An unknown number of current and former employees of credit reporting firm Equifax received W-2 forms in the mail with their Social Security numbers visible through a window on the envelope, CNET has learned. Equifax became aware of the problem on January 19 and informed employees in a letter dated January 27,…
Customers’ Personal Information Found In Macy’s Dumpster
Jeff Bernthal reports: A surprising find outside the downtown St. Louis Macy’s store. Documents containing personal information including social security numbers. Heather Cole reported on documents blowing in the wind last fall for Missouri Lawyers Weekly. She found open dumpsters outside the downtown Macy’s with papers containing debit card numbers but no names of any…
Orange overshares in bcc blunder
Bill Ray reports: Orange accidentally shared the email addresses of more than 300 customers yesterday during a bid to find out what they think of the company. The email, passed on to us by several readers, suggests the recipient might like to reply with their thoughts about how customers keep in touch with the operator,…
NZ: ACC says sorry for botched mailout
Rachel Tiffen reports: ACC [Accident Compensation Corporation] has apologised “unreservedly” to thousands of businesses and individuals whose private information about workplace injuries was sent to the wrong companies. The corporation sends out 15,000 individual reports each month and yesterday 2000 were mailed to the wrong businesses. In a statement issued last night, general manager Dr…