Collaborate Disseminate
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such … Continue reading COVID Test Data Breach: 1.3 Million Patient Records Exposed Online
On January 11, DataBreaches noted a concerning blob exposure discovered by Jerome Fowler and first reported by vpnMentor. As WIRED’s Matt Burgess reported: Last month, security researcher Jeremiah Fowler discovered 800 gigabytes of files and logs… Continue reading Raptor Technologies’ unsecured blob exposure was worse than they acknowledged. Here’s what we know — and don’t know — so far.
Keith Gushard reports: The Erie VA Medical Center says it regrets any preventable disclosure of sensitive veteran information and takes appropriate action to inform and protect impacted individuals as quickly as possible. The statement, issued Monday… Continue reading Erie VA Medical Center says it regrets veteran info disclosure
Scott Gelman reports: An investigation into how Fairfax County Public Schools accidentally shared other students’ private information with a parent during a fall meeting has concluded, Superintendent Michelle Reid said in a letter to families Thursday…. Continue reading Fairfax Co. concludes investigation into student data breach
Stuart Woodward and Shivani Chaudhari report: A school has apologised for sending an email to parents which listed the personal data of 69 pupils who were being disciplined for bad behaviour. The principal at Ortu Gable Hall School in Corringham, Essex… Continue reading UK: Corringham school apologizes after sharing personal pupil data
Public Technology reports: The Ministry of Defence has been fined £350,000 over a data breach that divulged the identities of hundreds of Afghan nationals who worked for the UK government in Afghanistan. According to data watchdog the Information Commi… Continue reading MoD fined £350k over data breach that endangered lives of Afghan interpreters
Mariam Issimdar and Nikki Fox report: A hospital trust has apologized after private information on more than 22,000 patients was released in two breaches. The leaks – in 2020 and 2021 – concerned maternity and cancer patients at Addenbrooke… Continue reading Data breach by Addenbrooke’s Hospital reveals patient information
Carly Page reports: Thousands of exposed servers are spilling the medical records and personal health information of millions of patients due to security weaknesses in a decades-old industry standard designed for storing and sharing medical images, res… Continue reading Millions of patient scans and health records spilling online thanks to decades-old protocol bug
Press Release of November 28: The New York State Department of Financial Services (DFS) today announced that First American Title Insurance Company (First American) will pay a $1 million penalty to New York State for violations of DFS’s Cybersecurity R… Continue reading DFS Announces $1 Million Cybersecurity Settlement With First American Title Insurance Company
Paulina Okunytė reports: KidSecurity, a popular parental control app that’s used to track children, has exposed its activity logs, leaving users’ private data in the hands of threat actors. With more than a million downloads on Google Play, KidSe… Continue reading KidSecurity’s user data compromised after app failed to set password