Rebecca Aldous reports: District of Squamish officials last year accidentally posted bylaw infraction information on the district’s website that should have remained private. The privacy breach happened for approximately a month in January 2011. At the time, the public was able to access mostly unidentifiable bylaw complaint attachments, said Robin Arthurs, the municipality’s general manager…
Category: Government Sector
UK: Privacy glitch forces porn filtering consultation offline
Stewart Mitchell reports: The Information Commissioner’s Office is looking into complaints over a privacy breach on the consultation on web porn blocking launched yesterday on the Department of Education’s website. The department’s entire consultation page is currently down, cutting into the ten-week window for posting opinions on whether adult sites should be filtered by default….
UK: Company linked to unsecured stolen laptop could run council offices
From the this-doesn’t-sound-good dept.: The organisation which left thousands of pieces of personal data unsecured on a laptop stolen from Glasgow City Council could be given control of key council buildings. ACCESS was responsible for issuing unencrypted laptops against council policy on over 160 occasions earlier this year, according to a damning report by the…
CFTC Data Breach Risks Employees’ Social Security Numbers
Silla Brust reports: The U.S. Commodity Futures Trading Commission suffered a data breach in May, putting at risk Social Security numbers and personal information of employees of the country’s top derivatives regulator. A CFTC employee received a “phishing” e-mail on May 21 and input information to a fraudulent website, according to a copy of an…
MN: State worker stole IDs for fraud
David Chanen and Dan Browning report: Applications that psychologists made to the Minnesota Board of Psychology to get or renew their licenses delivered a gold mine of information to a receptionist working with a crime ring to defraud banks and retailers in 14 states. Robin Finger, 44, is the latest of several people in a…
AU: RailCorp violated NSW privacy law by not properly wiping lost USB drives before auctioning them – report
Remember the news coverage of how RailCorp was auctioning off USB drives left on trains without properly wiping them first? There’s a follow-up to the story on Infosecurity-Magazine this week: The state-owned passenger rail service RailCorp did not comply with New South Wales’ (NSW) privacy law when it “cleansed” data from unclaimed USB keys that…