CRC News reports: The Canada Revenue Agency lost a bin containing Canadians’ tax information after the truck hired to transport the documents was involved in a highway accident earlier this year. The incident was just one of almost 150 privacy breaches reported to the Office of the Privacy Commissioner in the first six months of 2019,…
Category: Government Sector
TX: City of Odessa notifies residents of Click2Gov breach
Seen on the city’s website: Post Date:12/12/2019 4:54 PM Click2Gov Security Breach ODESSA – We have learned of a data security incident that occurred between August 27, 2019 and October 14, 2019 that involved some of our customers’ credit/debit card information. The City of Odessa utilizes a third-party software product called Click2Gov to provide our…
NYPD Fingerprint Database Infected With Ransomware by Third Party Contractor
Nicole Lindsey reports In yet another sign that hackers are shifting their focus to public institutions and local municipalities, the New York Police Department (NYPD) has acknowledged that its fingerprint database was recently the target of an attempted ransomware attack. According to the NYPD’s Deputy Commissioner for Information Technology, the attempted ransomware attack was the…
City of Hamilton warns data breach may compromise residents’ personal information
Don Mitchell reports: The City of Hamilton is alerting residents of a “potential privacy breach” in which water-related billing data may have been accessed by third-party vendors. In a release on Wednesday afternoon, the city said it’s water-related services, including meter reading, billing, payment, collections, and customer care services which are managed by Alectra Utilities,…
Waco’s online water payment portal breached, card data possibly captured
Another day, another Click2Gov client reporting a breach. This time it’s Waco, Texas. Update: Gemini Advisory reports that 2500 cards were involved.
Police Procedural: How South Carolina Arrest Records Were Exposed
UpGuard reports: The UpGuard Research team can now disclose that a cloud storage bucket containing personally identifiable information (PII) for thousands of people in the South Carolina justice system has been secured. An employee of Spartan Technology, a South Carolina tech company, had uploaded a collection of backups to the AWS S3 storage service. The data collection…