For lo, these many years, DataBreaches.net has been reminding everyone that not all leaks or breaches involving medical or sensitive personal health information are covered by HIPAA. Today’s story is a reminder of that. vpnMentor recently contacted DataBreaches.net about a leak their research team, led by Noam Rotem and Ran Locar, had discovered. The leak…
Category: Subcontractor
Ca: Western students alerted about security breach at exam monitor Proctortrack
Andrew Lupton reports: A security breach of Proctortrack, the software Western University uses to monitor student exams remotely, is adding new fuel to a debate raging on campus over privacy concerns about the program. Proctortrack allows students to be monitored to prevent cheating while they take exams at home using their own computers. The program…
KY: Breach of city contractor e-mail put some city workers info at risk
Steve Rogers reports: Some current and former Lexington city employees’ personal information was put at risk when a third-party contractor’s e-mail server was hacked in July. The city was notified on Sept. 28 of the security incident by Metaformers Inc., the third-party contractor working on city technology projects, the city said in a release. Read…
Data leak at Covid testing call center under investigation
NL Times reports: The Dutch data protection authority AP is investigating whether health service GGD is complying with privacy rules with its coronavirus test line, the call center where Netherlands residents can book a Covid-19 test and which calls with their results. This follows stories of former employees still having access to personal data, even…
A prison video visitation service exposed private calls between inmates and their attorneys
Zack Whittaker reports: Fearing the spread of coronavirus, jails and prisons remain on lockdown. Visitors are unable to see their loved ones serving time, forcing friends and families to use prohibitively expensive video visitation services that often don’t work. But now the security and privacy of these systems are under scrutiny after one St Louis-based prison video visitation provider…
UK: Wisepay: School payments service hit by cyber-attack
BBC reports: Parents who made payments to UK schools in recent days via the Wisepay service have been warned their card details have been compromised. Wisepay said a hack of its website meant an attacker was able to harvest payment details between 2 and 5 October via a spoof page. Attempted payments to about 300…