Brian McVicar reports: Grand Valley State University says student social security numbers were not accessible last week when a university vendor accidentally posted online a list of names, addresses and internal id numbers of more than 10,000 students. The university discovered on Saturday, April 19, that the information was accessible on the website of Kent…
Three Welsh councils’ electoral roll data breaches probed
BBC reports: The Information Commissioner’s Office (ICO) said it was concerned about incidents involving Rhondda Cynon Taf, Caerphilly and Torfaen. Their electoral rolls were passed to credit reference agencies, including details which should not go to third parties. A computer software error has been blamed. Read more on BBC.
It’s Insanely Easy to Hack Hospital Equipment
Add this to your MUST-READ list. It should be required reading for all hospital administrators. Kim Zetter reports: When Scott Erven was given free rein to roam through all of the medical equipment used at a large chain of Midwest health care facilities, he knew he would find security problems–but he wasn’t prepared for just…
NY: Rochester Housing Authority Data Breach Impacts Up to 180 Residents
And as breaches go, this one isn’t a particularly huge one, either, but it cost an employee their job. Beth Adams reports: The Rochester Housing Authority says a security breach has caused the names and social security numbers of up to 180 residents to be compromised. RHA executive director Alex Castro says a housing specialist…
FL: Fasano fires printing company over registration error
As breaches go, it’s not a huge one, but it cost one company a customer. Laura Kinsler reports: Tax Collector Mike Fasano has fired a printing contractor that mistakenly sent out nearly 2,000 auto vehicle registrations to Pasco County residents with the wrong personal information on them. Fasano said the vendor, CASS Data and Mailing…
Wyndham’s former director of security compliance says many Super 8 hotels not PCI DSS compliant
I initially thought I’d just skip posting an article on Consumer Reports that seemed to just be a re-hash of what we knew already about the FTC case against Wyndham. But then I came to this statement: Now, David Durko, former director of Wyndham’s security compliance management, says that many independently owned and operated Wyndham…