From the Cucamonga Valley Water District website, a Dec. 4 notification: Cucamonga Valley Water District (CVWD) was recently informed of a data breach of the Click2Gov web portal used by CVWD customers for one-time credit card payments. CVWD values its customers and respects the privacy of their information, which is why, as a precautionary measure,…
Category: Subcontractor
IT vendor fined after data of 47,800 students, parents and staff of Singapore schools hacked
Nicole Chang reports: IT vendor Learnaholic has been fined S$60,000 after the personal data of more than 47,000 students, parents and staff of various schools were hacked. The organisation provided services including attendance-taking and e-learning systems to schools in Singapore under a contract with the Ministry of Education. However, lapses in its security arrangements led…
JP: More HDDs with personal data found to be auctioned
Officials of Kanagawa Prefecture say nine more hard disk drives with taxpayers’ personal information are still missing in addition to another nine drives that have been recovered. The 18 HDDs were auctioned away online by a worker of a recycling firm in violation of contracts. Read more on NHK.
About 3,000 Fort Worth water customers may have had info stolen in data breach
Kaley Johnson reports more trouble for Click2Gov software by CentralSquare Technologies: About 3,000 customers of the Fort Worth Water Department may have had had their information stolen due to a data breach, a department spokeswoman said. Those impacted would have made a one-time payment for Fort Worth water with a credit card between Aug. 27 and Oct….
A Sprint contractor left thousands of US cell phone bills on the internet by mistake
Zack Whittaker reports: A contractor working for cell giant Sprint stored on an unprotected cloud server hundreds of thousands of cell phone bills of AT&T, Verizon and T-Mobile subscribers. […] U.K.-based penetration testing company Fidus Information Security found the exposed data, but it wasn’t immediately clear who owned the bucket. Read more on TechCrunch.
More details emerge on Magellan Healthcare breach
Some breaches dribble out over time, especially when they involve a business associate. This time, it’s Magellan Healthcare, Inc. On September 17, Magellan Healthcare, Inc. notified HHS after an employee of Magellan Rx Management fell prey to a phishing attack in May that was discovered July 5. Analysis of the contents of the employee’s email…