Dan Goodin reports: Q Link Wireless, a provider of low-cost mobile phone and data services to 2 million US-based customers, has been making sensitive account data available to anyone who knows a valid phone number on the carrier’s network, an analysis of the company’s account management app shows. Read more on The Register. Opinion: I…
Category: Exposure
Education nonprofit Edraak ignored a student data leak for two months
Zack Whittaker reports: Edraak, an online education nonprofit, exposed the private information of thousands of students after uploading student data to an unprotected cloud storage server, apparently by mistake. The nonprofit, founded by Jordan’s Queen Rania and headquartered in the kingdom’s capital, was set up in 2013 to promote education across the Arab region. The…
Good Luck Explaining to HHS Why Your PHI is in GitHub’s Vault for the Next 1,000 Years
You may see a number of hospitals and covered entities issuing statements this week about a data security incident involving Med-Data (Med-Data, Incorporated). So far, Memorial Hermann, U. of Chicago, Aspirus, and OSF Healthcare have posted notices. Others should be or may be posting soon. Here’s DataBreaches.net’s exclusive report on the incident. Another Day, Another…
NZ: Heath board has contacted 50 people affected by software privacy breach
Sam Sherwood reports: About 50 people affected by a software error that allowed patients’ private information to be seen in the Covid-19 vaccination appointment booking system have been contacted by the Canterbury District Health Board (CDHB). The error meant the details of 714 individuals who had registered were potentially able to be viewed. The details included…
NZ: Canterbury District Health Board apologizes for software privacy breach
Lee Kenny reports: Canterbury District Health Board (CDHB) has apologised for a software coding error which allowed people to see other patients’ private information when they booked a Covid-19 vaccination appointment. The error meant the details of 716 individuals who had registered were potentially able to be viewed. Read more on Stuff.
NXIVM sex-cult leader Keith Raniere under fire after lawyers accidentally reveal victim names in court docs
Noah Goldberg reports: Convicted sex-cult guru Keith Raniere and his legal team are in hot water for accidentally revealing the names of victims of the NXIVM leader in court documents Tuesday. The feds responded quickly, asking Brooklyn Federal Court Judge Nicholas Garaufis to seal the documents, which he agreed to and which was done early…