From the yeah-this-isn’t-good dept. Caitlin Shuda reports: A data breach exposed the names, addresses, personal information and even photographs of more than 250,000 people with information on Adams County computer systems. Officials in a statement on Friday said they do not have evidence that personal data was stolen, but urged those affected by the breach…
Category: Of Note
Comcast breach exposes 26.5m customers’ Social Security Numbers and partial addresses
Cory Doctorow reports: Comcast Xfininty’s login page had an easily found bug that allowed anyone to gain access to the Social Security Numbers and partial home addresses of over 26.5 million customers. Comcast spokesapologist David McGuire says the company patched the bug quickly after being notified of its existence by security researcher Ryan Stevenson, and…
Protenus 2018 Q2 Report: 3.14M Patient Records Breached As Patients Are Increasingly Anxious About Health Data Security
As regular readers know by now, DataBreaches.net compiles data from health data breaches in the U.S. for Protenus, Inc. For the past few years, Protenus published monthly statistics and analyses, but this year, shifted to a quarterly report with more analyses and some fascinating proprietary data. Here’s an example of what you’ll find in their…
Samsung Galaxy S7 smartphones vulnerable to Meltdown hacking: researchers
Jack Stubbs reports: Samsung’s Galaxy S7 smartphones contain a microchip security flaw, uncovered earlier this year, that has put tens of millions of devices at risk to hackers looking to spy on their users, researchers told Reuters. The Galaxy S7 and other smartphones made by Samsung Electronics Co Ltd (005930.KS) were previously thought to be…
Unixiz Agrees to Shutter “i-Dressup” Site and Pay Penalty to Settle Charges Under COPPA and the New Jersey Consumer Fraud Act
From Hunton Andrews Kurth: On August 3, 2018, California-based Unixiz Inc.(“Unixiz”) agreed to shut downits “i-Dressup” website pursuant to a consent order with the New Jersey Attorney General, which the company entered into to settle charges that it violated the Children’s Online Privacy Protection Act (“COPPA”) and the New Jersey Consumer Fraud Act. The consent orderalso…
OpenEMR patches serious vulnerabilities uncovered by Project Insecurity
Everyone has their own definition of a good day. Mine includes preventing breaches of patient medical information. Today qualifies as a good day, thanks to Project Insecurity. OpenEMR is open source software for managing electronic medical records (EMR) and other practice management functions. According to Wikipedia, OpenEMR is one of the most popular free electronic medical…