CNN reports: A researcher says the Pentagon exposed huge amounts of web-monitoring data in a security failure. Anyone with a free Amazon Web Services account could have looked at the hoard of information stored in the cloud by the U.S. Defense Department, according to Chris Vickery, a researcher at cybersecurity firm UpGuard who discovered the exposure. Read more…
Category: U.S.
Another day, another email gaffe
The Department of Social and Health Services’ Behavioral Health Administration confirmed Thursday that a spreadsheet containing private information of 515 patients at Western State Hospital was sent to an incorrect email address. Read more on QFox13.
Central Jersey medical practice reports records breach
We now know the name of a medical practice that was impacted by the theft of patient records in September. The records had reportedly been sold at the time by the thief. Mike Deak reports: A medical practice with offices in East Brunswick and Franklin is notifying past patients that 13 boxes of medical records…
More details emerge on AZ Board of Education student data breach
More details have emerged on a breach first noted on this site last month. Jim Small of the Arizona Center for Investigative Reporting (AZCIR) reports that the breach occurred after AZCIR filed a public records request for records of appeals filed by students over letter grades issued by the state Board of Education. On Oct….
Retailer Forever 21 discloses payment card breach
So far, all I’ve seen is their press release, so it will have to do until we get more details from other sources, but I do wonder what kind of “third party” alerted them to this – was it a third party vendor who had some responsibility for data security or a customer who experienced…
Social Security numbers of 2,100 Maine foster care participants posted online
J. Craig Anderson reports: The names, addresses and Social Security numbers of roughly 2,100 Mainers who receive foster care benefits were accidentally posted to a public website in September, the Maine Office of Information Technology said Monday. The incident was the responsibility of an employee of a contractor, Knowledge Services, who still has a contract…