Zack Whittaker reports: Anti-abortion group Texas Right to Life exposed the personal information of hundreds of job applicants after a website bug allowed anyone to access their resumes, which were stored in an unprotected directory on its website. A security researcher told TechCrunch that the group’s main website, built largely in WordPress, was not properly…
Category: U.S.
Data breach at US restaurant and gambling chain Dotty’s may have leaked sensitive customer information
Jessica Haworth reports: A cyber-attack on US fast food and gambling chain Dotty’s has exposed the personal data of customers, the company has warned. Dotty’s, a fast food chain which offers gambling services across 175 locations, is owned and operated by Nevada Restaurant Services (NRS). Read more on The Daily Swig. DataBreaches.net had previously reported on Nevada…
Resource Anesthesiology Association of California warns patient information was on stolen laptop
KGET reports: Resource Anesthesiology Association of California, a local medical company, is warning that patients might have had their personal information compromised following a laptop theft. The Resource Anesthesiology Association of California says the laptop was stolen from an employee’s vehicle on July 8. A police report was filed but the company says the laptop…
PA: Penelec customers must reset passwords after security breach
WCED News reports: The parent company of Penelec and other electric companies in our state, the First Energy Corporation, is requiring all customers to reset their passwords due to a security breach. First Energy disabled the online accounts and asked customers to reset the passwords on Friday after detecting hackers making numerous unauthorized attempts to…
Nevada Restaurant Services, Inc. Provides Notice Of Data Privacy Event
From the I-have-questions department: Nevada Restaurant Services reported that they experienced a breach in January of this year and that the threat actor was able to copy some of their files. The type of data varied by person but the notification stated that the scope of information potentially involved includes individuals’ name, date of birth,…
NC: Sandhills Center Provides Notice of Potential Data Theft
On July 30, 2021, DataBreaches.net reported on a claimed cyberattack against Sandhills Center in North Carolina. Data for sale had shown up on the “Marketo” site, and when DataBreaches.net looked at the “proof packs,” of data, they included psychological evaluations and other documents with personal and sensitive information. Much of the data was old, and…