The Minnesota Independent, which has been all over this breach since back in January, has a report from Chris Steller today which quotes the campaign web site privacy policy as it was in effect in January 2008 and as it is now. According to the news story, the site’s stated privacy policy in January read,…
Army database may have been breached
Doug Beizer of Federal Computer Week reports that an Army database containing personal information about nearly 1,600 soldiers involved with the Operation Tribute to Freedom program during the past five years may have been accessed by unauthorized users. The potentially compromised information does not include Social Security numbers, but does include names, phone numbers, addresses,…
Nature security breach prompts password reset
John Leyden of The Register reports: The website of science journal Nature has suffered a security breach that resulted in the potential exposure of users’ login credentials. The login credentials were stored in an encrypted form, making them hard to extract. But Nature.com has still opted to reset the passwords of affected users, as a…
UK: Children’s details published on website in council blunder
Annie Riddle of The Salisbury Journal reports that 146 special needs (i.e., special education) children had their personal details published on a Wiltshire County Council website. What makes this one worse is that the council had been alerted to the problem in 2004 and thought it had been taken care of back then. Two weeks…
Police in Romania detain 20 alleged hackers
The Associated Press reports that police in Romania have detained 20 people suspected of cloning the web sites of banks in other countries to deplete customers’ bank accounts. Individuals in both Spain and Italy were affected. In another case, police detained a person suspected of hacking into the servers of U.S. universities and government agencies,…
UK: List of health service security blunders exposed
Continuing what appears to be an increasing trend in the UK media to use freedom of information requests to obtain breach reports, Echo found that there had been 34 incidents involving patient data being lost or mislaid by health service staff in Gloucestershire since December 2007. The paper notes that the same request was sent…