WINK reports: Students’ grades, addresses and phone numbers… found sitting in a dumpster for anyone to see. That’s what one man found next to Bishop Verot High School. He worried it could get into the wrong hands. On the side of the school, there are dumpsters. They’re on school property, but anyone can access them….
Category: U.S.
California Dept. of Consumer Affairs has a breach, but doesn’t notify those affected for 6 months?
Ouch. The California Department of Consumer Affairs – Bureau of Automotive Repair (“BAR”) learned that a service provider had a network intrusion breach that gave someone access to bank account numbers and bank routing numbers belonging to the Smog Check stations licensed by the BAR. The breach reportedly occurred between May 2012 and March 2013,…
Former Iberdrola employee charged in April breach
So it looks like the Iberdrola breach, reported in April, was a disgruntled employee situation after all. Steve Orr reports: In mid-April, an RG&E corporate parent announced that a computer intruder had compromised the privacy of job applicants’ personal data. Coming a year after another computer-privacy foul up involving Rochester Gas and Electric Corp., the…
Statement of Public.Resource.Org on IRS web exposure of tens of thousands of SSNs
From their web site: Public.Resource.Org has discovered that the Internal Revenue Service has posted the Social Security Numbers of tens of thousands of Americans on government web sites. The database in question contains the filings of Section 527 political organizations such as campaign committees. This Section 527 database is an essential tool used by journalists, watchdog groups, congressional staffers,…
Appeals Court Sends Fiserv Data Breach Case Back to Trial
Robert McGarvey reports that a credit union’s lawsuit against Fiserv has been resurrected by a Tennessee court: The Court of Appeals in Tennessee, in a ruling filed July 3, ruled that a lower court erred when it dismissed a suit filed by Copper Basin Federal Credit Union and CUMIS against Fiserv Inc., wherein the plaintiffs…
Vendini hack update
Back on May 22, this blog reported that Vendini, an online ticketing service provider, had experienced a hack on March 29 that they detected on April 25. Names, addresses, email addresses, credit card numbers and credit card expiration dates were on the hacked server. The firm started notifying its clients during the week of May 21,…