Thanks to the New Hampshire Attorney General’s Office for posting breach notices online: Student Loan Xpress, Inc. reported (pdf) that the service provider for their student loans, American Education Services, inadvertently transmitted personal information on student loans to another lender that AES also has contracts with. The information may have included names, addresses, Social Security…
Category: Exposure
Wikileaks Forced to Leak Its Own Secret Info
Ryan Singel reports: What’s Wikileaks, the net’s foremost document leaking site, supposed to do when a whistle-blower submits a list of email addresses belonging to the site’s confidential donors as a leaked document? That’s exactly the conundrum Wikileaks faced this week after someone from the controversial whistle-blowing site sent an emergency fund-raising appeal on Saturday…
NY: Detailed medical records turn up online
Cathleen F. Crowley reports: Alice Fisk searched Google hoping to find condolence messages written on memorial sites for her daughter, who died in September from complications of diabetes. Instead of condolences, Fisk found a medical report about her daughter’s visit to a bone doctor. […] Records of more than 1,000 patient visits to Northeast Orthopaedics,…
CVS Caremark Settles FTC Charges; CVS Pharmacy Also Pays $2.25 Million to Settle Allegations of HIPAA Violations
FTC Press Release: CVS Caremark has agreed to settle Federal Trade Commission charges that it failed to take reasonable and appropriate security measures to protect the sensitive financial and medical information of its customers and employees, in violation of federal law. In a separate but related agreement, the company’s pharmacy chain also has agreed to…
NY: BCC error causes release of Social Security numbers on alumni magazine (updated)
Eric Reinagel reports: Sherry Barton’s family is already dealing with issues related to identity theft. That’s why she was irked to discover that her alma mater, Broome Community College, sent out a mailing last week with her Social Security number posted prominently on the back cover. The winter/spring 2009 alumni magazine was mailed to 28,000…
And yet even more p2p breaches
Thanks to Rian of RedTeam Protection, here are some more breaches they uncovered: An executive producer at a Manhattan based television Production Company published 2,755 documents onto the gnutella file-sharing network. Contractors of this firm were required to provide their name, date of birth, and social security number for tax purposes. The invoices with personal…