A UK child care voucher scheme has been taken off line after user Nick Gibbins found that the “web” application was exposing personal data for over one hundred thousand users. Gibbins found that the Busy Bees childcare voucher system was actually implemented using Citrix Metaframe, exporting the user interface from a Windows 2000 application to…
Deal leaves money, language on health IT mostly intact
Andrew Noyes reports: The compromise stimulus deal leaves much of each chamber’s proposed funding for health information technology intact, according to an overview circulated by House Speaker Nancy Pelosi on Wednesday and a preliminary summary of the compromise that was subject to change. […] The package would also expand federal privacy and security protections for…
Physician, heal thyself? Hackers continue exposing vulnerabilities in security firms’ databases
First it was Kaspersky. Then it was BitDefender Portugal. Today it’s F-Secure, but no personal data was accessible. F-Secure posted a response on their site: […] During the last few days a Romanian group has been doing SQL injection attacks on several security vendor’s websites and early this morning they hit us. One of our…
JP: Personal data of 4,210 students, teachers lost
An external hard disc containing the personal information of 4,210 people, including students’ academic records and the addresses of graduates and teachers, has been lost from Ritsumeikan Junior and Senior High School in Kyoto, the school announced Thursday. Believing the disc, which disappeared on Feb. 7, may have been stolen, Ritsumeikan filed a complaint with…
Laptop theft from JetDirect Aviation offices leaves thousands at risk
When JetDirect Aviation Holdings, LLC discovered that a laptop had been stolen from the accounting area of its Weymouth Massachusetts location sometime during the evening of February 2 or early morning of February 3, it wasted no time. The data on the laptop affected 1,576 current employees, as well as 651 former employees, and an…
Heartland Data Breach: Maine Credit Union Says Reported Fraud has Tripled
Some interesting insights into the impact of the Heartland breach on a small credit union are provided in a BankInfoSecurity story: Last week [HealthFirst Credit Union of Waterville] in Maine thought it had seen the last of the Heartland Payment Systems data breach that had affected 261 of its members’ credit cards. Officials now report…