Josh Renaud reports: Documents containing Social Security numbers and other private information for thousands of Missourians are accessible to anyone using the Casenet website, the state’s judicial records system, the Post-Dispatch recently discovered. Missouri Supreme Court officials have acknowledged the issue after being alerted by the Post-Dispatch, and they fixed one vulnerability on Casenet. But…
TIC Hosting Solutions customer data leaked? What, if anything, happened there? (1)
DataBreaches has received a tip that TIC Hosting Solutions in Romania had a recent data breach affecting customer data. The tipster provided an .SQL database called “Galactic” as an example of data being leaked. The users table included usernames and email addresses, including one for “tichhosting.” This site was unable to reach TIC Hosting Solutions…
Amnesty International Australia Suffered a Data Breach in December, but Says Everything is Now Fine
Asha Barbaschow reports: On late Friday, Amnesty International Australia sent an email to supporters informing them their data may be at risk due to “anomalous activity” detected in its IT environment. While the email went out very late in the day/week, it also went out a very long time after the activity was found. The email, sighted by Gizmodo…
Some ‘sensitive information’ potentially compromised: Diocese of Las Vegas reports cybersecurity breach
Alyssa Roberts reports: The Diocese of Las Vegas on Friday announced a cybersecurity breach that potentially compromised “sensitive information of its volunteers, parishioners, donors and other stakeholders,” a news release states. A spokesperson noted there was “no indication that personal information has been misused,” but said the Diocese would notify those who may have been…
United HealthCare reports a data breach that may have revealed the customer’s personal information
The CBS reports: United HealthCare made customers aware of a data breach on Friday, which temporarily allowed access to personal information for those enrolled in the company’s healthcare plans. According to a statement, “suspicious activity” was noticed on the UHC mobile application “that may have led to the disclosure of member information.” The company says…
Many Public Salesforce Sites are Leaking Private Data
Brian Krebs reports: A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. The data exposures all stem from a misconfiguration in Salesforce Community that allows an unauthenticated user to access records that should only be available after logging…