Tim Sandle reports: Argentina’s health officials have apparently exposed personal medical data relating to some 115,000 COVID-19 quarantine exemption applicants, in what represents a major health sector data breach. […] An Elasticsearch database containing personal information of more than 115,000 Argentinians who applied for COVID-19 circulation permits was exposed on the web without a password…
Category: Government Sector
Second Data Breach at Kentucky Unemployment System
Sarah Coble reports: Kentucky’s unemployment system appears to have suffered its second data breach in four months after a claimant reported being able to view another claimant’s personal data. The reporter of the alleged breach logged on to the Office of Unemployment Insurance’s (OUI) online system on July 27 to work on their unemployment application. While trying…
CO: Lafayette pays $45,000 in ransom after cyber-attack disabled computer system
Keely Sugden and Evan Kruegel report: The mayor of Lafayette posted a video Tuesday, saying the City has paid a $45,000 ransom after a cyber attack affected city computer and phone systems. “The City was coerced into paying a $45,000 ransom to retrieve a ‘key’ to unlock encrypted data,” officials said. Read more on KDVR.
NZ police terminate contract with Gravitas after breach
Tom Pullar-Strecker reports: Police are axing their contract with Auckland research firm Gravitas after information they sent the firm about police complainants was lost in a Nigerian hack. Assistant commissioner Jevon McSkimming announced earlier this month – without naming the company – that Gravitas had alerted Police to the data breach and had also reported it…
Vermont Tax Department exposed 3 years worth of tax return info
Sergiu Gatlan reports: The Vermont Department of Taxes today disclosed that taxpayers’ private information was exposed because of a security issue affecting its online filing site discovered on July 2, 2020. The data breach affected all Vermonters who electronically filed Property Transfer Tax returns using the tax department’s site between February 2017 and July 2020….
White House Tells EPIC to Delete COVID-19 Records, EPIC Declines
I usually post items from EPIC.org over on PogoWasRight.org, but this one gets posted as a government breach on this site, too. In an unusual development, the White House directed EPIC this week to delete a set of records that EPIC recently obtained from the Office of Science & Technology Policy—a request which EPIC declined….