On December 31, a self-described teenage hacker from Australia who calls himself “Abdilo” claimed to have hacked into dozens of education entities by exploiting SQLi vulnerabilities. Metropolitan State University acknowledged they were breached, but what is going on with the other educational entities that were allegedly hacked, too? Abdilo claims that he started attacking .edu sites back in…
AU: Private details leaked after travel insurance company hacked
PM reports on another hack by “Abdilo,” The computer systems and database of one of the country’s largest travel insurance companies has been hacked, and parts of its customer database posted online. Aussie Travel Cover, a privately owned New South Wales based business has known about the hack since before Christmas, but opted not to…
NZ: Lost files leave Waitemata DHB red-faced
Lynley Bilby reports: Sensitive health documents of four dead patients have been spilled on to a busy Auckland motorway. The privacy blunder happened when a staff member reviewing the files of the former patients from North Shore and Waitemata Hospitals left them on top of their car and drove home after work. The documents were…
TR: Education Ministry database breach leaves millions at ID theft risk
Following up on the data protection/breach problems in Turkey, BGN News reports that a breach in Ministry of Education IT system puts ID information of 15 million students, their parents, and teachers at risk: According to Cumhuriyet daily, the General Directorate of Information Infrastructure Systems as well as the General Directorate of Support Services memo titled “Password…
Florida man sentenced To 81 months in prison in ID theft scheme involving over 3,000 stolen identities
Providencia Llanos, a/k/a Providensia Llanos, a/k/a Providencia Allison, 36, of Miami Gardens, was sentenced on Friday to 81 months in prison, followed by three years of supervised release, and was ordered to pay $42,828 in restitution. Llanos previously pled guilty to one count of access device fraud, in violation of Title 18 United States Code,…
Ca: Anti-abortion activist snooped into patient records
Olivia Carville reports some additional details involving a breach at Peterborough Regional Health Centre that has been noted on PHIprivacy.net since 2012, including a lawsuit against the centre: An anti-abortion activist who worked at an Ontario hospital was sacked after a massive privacy breach in which abortion files, among other patient records, were inappropriately accessed. Dawn DeCiccio, a high-profile anti-abortion campaigner,…