Sometimes people who find documents with personal information don’t know to whom to return them. Other times, they may know, but refuse to return them or stall in returning them. And yet others may decide to go to the media. Why people make the choices they make is beyond the scope of this blog, but…
Private tracker member data leaked via BBCode exploit
Andy of TorrentFreak writes that a vulnerability in a popular private tracker, SceneAccess, enabled a security expert to extract private data about site members and staff and attach usernames to IP addresses. The possibility remains, Andy writes, that other sites are also affected. Read more on TorrentFreak.
Non-profit Code.org notifies volunteers whose email addresses were exposed
From Code.org’s blog, yesterday: Some volunteer email addresses compromised 🙁 On Friday night we discovered and fixed an error in the Code.org site that allowed access to our volunteer email addresses. This wasn’t a case of hackers breaching our security systems, rather it was our mistake of leaving volunteer email addresses accessible via the web…
Security Researchers Challenge Claims Data Breaches Increasing
Impressions on the rate of incidents based on headlines can be misleading. Because more media outlets now report on incidents doesn’t mean that the actual rate of incidents has increased over years, as Robert Lemos reports: In April 2015, the U.S. Department of Energy responded to Freedom of Information Act (FOIA) request from USA Today by releasing…
OH: Information on some Geauga Medical Center patients improperly accessed
Andrew Cass reports: A former University Hospitals employee improperly accessed medical information of 677 patients at UH Geauga Medical Center, including personal information, according to a news release from UH. The information that may have been accessed includes names, dates of birth, medical record numbers and health information related to medications. According to the release,…
Karmanos Cancer Center discloses lost flash drive contained patient info
It’s 2016. Why are people still mailing unencrypted flash drives with protected health information? This should be an automatic monetary penalty from OCR. It’s not, but it should be by now. Fox47 in Detroit reports that the Barbara Ann Karmanos Cancer Center is notifying 2,808 patients and family members after they lost an unencrypted flash drive…