Dutch newsletter subscribers seem to be having a tough time recently keeping their email addresses private. According to Karin Spaink‘s blog, first the police accidentally exposed 650 newsletter recipients’ addresses in the cc-field instead of using the bcc-field of a newsletter, and then Het Dagblad van het Noorden exposed a .txt file with 32.781 e-mail…
HI: Security Breach Affects 15,487 KCC Students
KITV reports: More than 15,000 students at Kapiolani Community College face an identity theft risk because of an Internet security breach, school officials said. School officials found a computer on April 15 with the personal information of 15, 487 students who applied for financial aid between January 2004 and April 15 that was infected with…
Update: Virginia Health Data Potentially Held Hostage
Thomas Claburn of InformationWeek reports: An extortion demand posted on WikiLeaks seeks $10 million to return over 8 million patient records and 35 million prescriptions allegedly stolen from Virginia Department of Health Professions. The note reads: “ATTENTION VIRGINIA I have your sh**! In *my* possession, right now, are 8,257,378 patient records and a total of…
Ohio Heritage Bank replaces cards due to HPY breach (updated)
Heartland Payment Systems may be back in VISA’s good graces as PCI-Compliant, but the impact of the breach continues to emerge. Leonard Hayhurst of Coshocton Tribune reports that Ohio Heritage Bank was alerted over the weekend that 800 debit cards were compromised due to the breach. Of the 800 cards, 15 showed fraudulent charges….
Ca: Teacher web site exposes student info
Kate Adams of BayToday reports that a Widdifield Secondary School teacher’s web site exposed student information including contact information and Ontario Health Insurance Program numbers. An investigation revealed that the information was only exposed briefly and that there were only a few “hits.” The school board was able to ascertain the IPs of those accessing…
Another breach raises questions about the security of online health data
First it was an extortion demand made to Express Scripts in October 2008, followed by similar threats to some of their clients that members’ personal information and prescription data would be exposed on the web if the company didn’t pay up. Now the Virginia Department of Health Professions is also on the receiving end of…