Gareth Corfield reports: Southern Water – British supplier of the liquid of life – botched its internal Sharepoint implementation so badly that a customer was able to view other people’s account details. Reg reader Chris H discovered that the way Southern Water had set up Sharepoint to host customer information as a “your account” style section…
Category: Exposure
‘Human error’ results in privacy breach for Children’s Disability Services clients: Manitoba government
Charles Lefebvre reports: The Manitoba government says ‘human error’ resulted in personal information about Children’s Disability Services (CDS) clients being unintentionally shared this week. On Friday, the province said in a news release that the privacy breach occurred on Aug. 26, when staff from CDS “accidentally sent an email intended for the Manitoba Advocate for…
Over 54,000 scanned NSW driver’s licences found in open cloud storage
Juha Saarinen reports: Tens of thousands of scanned NSW driver’s licenses and completed tolling notice statutory declarations were left exposed on an open Amazon Web Services storage instance, but Transport for NSW doesn’t know how the sensitive personal data ended up in the cloud. The open AWS S3 bucket was found by Bob Diachenko of…
Wellington-Dufferin-Guelph Public Health notification of privacy breach
August 25 – Wellington-Dufferin-Guelph Public Health is informing community members of a recent breach of privacy that affected an information dashboard that was used to display information about influenza cases in our community. This dashboard was posted on our public website between January 2020 and May 2020. The dashboard contained information on individuals with lab…
Primary Indian ticket vendor suffers crippling data breach
Jim Wilson writes: One of India’s most popular travel booking hubs was left exposed without adequate security measures, and subsequently, suffered a significant data breach that exposed all production server information and led to the loss of over 43GB of data. The affected Elastic search server was left publicly exposed without password protection or encryption…
TX: Dozens of boxes of medical records found at Odessa Recycling Center
Joshua Skinner reports: Over two dozen boxes of old medical records containing personal patient information were found at the Odessa Recycling Center over the weekend. How old medical records from West Texas Orthopedics came to be sitting out in the open at the recycling center this past weekend isn’t clear, nor is who’s to blame….