Catalin Cimpanu reports: GrowDiaries, an online community where marijuana growers can blog about their plants and interact with other farmers, has suffered a security breach in September this year. The breach occurred after the company left two Kibana apps exposed on the internet without administrative passwords. Read more on ZDNet. h/t, @Chum1ng0
Category: Exposure
ShopRite, Wakefern will pay $235k fine, improve security after massive data breach, AG says
Sophie Nieto-Munoz reports: ShopRite and its parent company, Wakefern Food Corporation, will pay $235,000 after two supermarkets threw away electronic devices exposing thousands of customers’ medical information, Attorney General Gurbir Grewal announced Monday. The company will also have to improve its data security after they failed to protect the information of more than 9,700 pharmaceutical customers…
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
Home Depot Confirms Data Breach in Order Confirmation SNAFU
Tara Seals reports: Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. After customers began reporting that they had received hundreds of emails from the home-improvement giant, each containing an order confirmation for a stranger, the company confirmed the…
Dozens of patient records dumped in St. Louis industrial area
Erin Richey reports that someone found boxes of patient records belonging to DaVita Florissant Dialysis on West Florissant Avenue. “Found names, Social Security numbers, addresses, lab reports, entire medical history of people and personal information,” he said. “ Read more on KSDK. According to the report, because Missouri does not regulate dialysis clinics, the state department…
True, the social networking app that promises to ‘protect your privacy,’ exposed private messages and user locations
Zack Whittaker reports: True bills itself as the social networking app that will “protect your privacy.” But a security lapse left one of its servers exposed — and spilling private user data to the internet for anyone to find. Read more on TechCrunch.