Sean O’Shea reports: A company that promised to pay customers for losing weight has posted personal information about clients, including their names, weights, weight loss goals and even facial photographs on its website. Weight Loss Grants revealed the personal information without clients’ consent after news reports described how the organization failed to make payments to…
Category: Other
OH: Personal information of more than 2400 TriHealth patients wrongly shared with student
Max Londberg reports: The personal information corresponding to more than 2,000 TriHealth patients was shared with a student mentee who was not authorized to view the data. The medical system announced the discovery Friday afternoon in a press release. Shared data included patients’ first and last names, ZIP codes, ethnicity, dates of birth and cancer…
Seven months after learning of a breach, UCSD still has not notified HIV research participants whose privacy was breached
Brad Racino and Jill Castellano report on what sounds like either willful or negligent handling of highly sensitive information of research participants bu a non-profit participating in some university-funded research. In either event, the university was notified of a breach in October and STILL hasn’t notified the research participants with HIV whose data was available…
Turkish watchdog fines Facebook over data breach
The Daily Sabah reports: Turkey’s Personal Data Protection Authority (KVKK) issued a 1,650,000 Turkish lira ($270,000) administrative fine against social media platform Facebook over data breach and failure to report the issue to authorities. The watchdog launched a direct investigation against Facebook over Engineering Director Tomer Bar’s statement released on Dec. 14, 2018 over an…
Lithuanian Man Pleads Guilty To Wire Fraud For Theft Of Over $100 Million In Fraudulent Business Email Compromise Scheme
The U.S. Attorney’s Office for the Southern District of New York announced that Evaldas Rimasauskas pled guilty to a fraudulent business email compromise scheme that induced two U.S.-based Internet companies (the “Victim Companies”) to wire a total of over $100 million to bank accounts he controlled. The two companies were not named in the press release…
Australian man arrested for selling one million passwords from popular streaming services
Alex Hernandez reports: A 21-year old Australian man has been arrested for allegedly selling Hulu, Spotify, and Netflix passwords online. The Australian man operated a website that generated passwords for popular streaming services including the aforementioned trio. It is being reported that the man made AU$300,000 (US$211,000) from his operation. The man was arrested after…