Randy Westergren looked into Christiana Care’s online payment portal, which involves a third party payment processor developed by BYL Companies, LLC. What Randy found was very concerning, and he promptly notified BYL of his findings. You can read his write-up of it all on his site. So here’s the thing: how many people may have actually exploited the vulnerability…
NY: Nurse who took pics of patients’ private parts at Syracuse hospital turns in license
James T. Mulder reports a follow-up on a very disturbing patient privacy breach: A nurse who took photos of an unconscious [SUNY] Upstate University Hospital patient’s penis with her smart phone has turned in her nursing license. The state Education Department announced it has approved a request from Kristen Johnson, 27, of Fulton to surrender her…
Grand Ole Opry Parent Company Falls Victim to Phishing Scam
Today’s reminder that we’re not done with all the phishing that snagged employee W-2 data. Nashville’s Ryman Hospitality Properties has fallen victim to a fraudulent phishing scam that resulted in employees’ IRS W-2 information, which includes Social Security numbers, being disclosed externally, Billboard has learned. The company is parent to entertainment brands the Grand Ole Opry, Nashville’s historic Ryman Auditorium and legendary…
Thailand: Sensitive info about tourists revealed in 2nd online data leak
Asian Correspondent reports: Another data leak involving foreigners in Thailand has apparently been uncovered barely a week after sensitive personal information of foreigners living in the country’s southern provinces was revealed to have been to be hidden in plain sight. This time the details of the foreign travelers, including their most recent vaccine shots, real names, nationalities, passport…
“Weev” hijacked 29,000 printers to spew anti-Semitic flyers across US colleges
Mary-Ann Russon provides additional details on Weev’s hack of printers to spew an anti-semitic message: Auernheimer used a single line of Bash script code to scan the internet for unprotected printers that were connected to the web using the open port 9100, and then created a PostScript file containing a flyer advertising a white supremacist news website…
Chinese Browsers Leave Users Vulnerable, Report Says
Dow Jones Business reports: China’s top three Web browsers collected and transmitted data in insecure ways, making hundreds of millions of users’ personal information vulnerable to unauthorized access, according to a human-rights research group. In a report published Tuesday, the University of Toronto’sCitizen Lab said Tencent Holdings Ltd.’s QQ Browser had been transmitting users’ data…