Il: Six indicted over Population Registry data theft
More on a breach previously mentioned on this blog last year. Joanna Parasczuk reports on the evolution of a data breach that started in 2006 as an insider breach and ultimately affected everyone in Israel, it seems: The Tel Aviv District Attorney has charged six people, including a computer programmer formerly employed as a Social Affairs Ministry contractor, in connection with a massive data theft that exposed the personal details of millions of Israelis. The theft, which took place in 2006, included the publication of detailed personal information on nine million Israelis, among them minors, deceased persons and citizens living abroad. According to ...
California Dept of Social Services notifying over 700,000 In-Home Supportive Services providers and recipients after payroll data lost in the mail
California Department of Social Services is notifying over 700,000 In-Home Supportive Services providers and recipients that their data may have been lost. An FAQ on the department's web site explains that CDSS became aware of the breach on May 9. The information was in a package that was damaged in transit between a Hewlett Packard processing center and the State Compensation Insurance Fund. The information included IHSS providers’ names and Social Security numbers as well as their case numbers and provider's numbers. For recipients, the data included employer identification numbers. The package, which was mailed on April 26 via U.S.P.S., ...
UNC-Charlotte breach affects 350,000
Remember that breach that the University of North Carolina at Charlotte disclosed back in February? Well, they've finally released some details and it's a doozy. Chris Dyches reports: An investigation into the incident shows that financial account numbers and approximately 350,000 social security numbers were included among the exposed data. The exposure has been remediated, officials say, and the University is acting to alert people who may have been affected by this exposure. [...] Due to a system misconfiguration and incorrect access settings, a large amount of electronic data hosted by the University was accessible from the Internet. There were two exposure issues, one affecting general university ...
Hackers Threaten University of Pittsburgh with Disclosure of Students’ Personal Info if Demands Are Not Met
Jacob Kleinman reports: Members of the hacktivist collective calling itself "Anonymous" are targeting the University of Pittsburgh, and threatening to release a wealth of private information regarding the school and its students, if the University does not "apologize to your students, law enforcement, and professors on your home page of your domain for a duration of no less then fifteen days!" In a three-minute long video directly addressing the Computer Science (CS) and Law departments in particular, Anonymous claims to have obtained every students personal information including passwords, dorm information, payment and credit information, parent information, coursework and grades, as well alumni ...
Recent News of Note
Il: Six indicted over Population Registry data theft
More on a breach previously mentioned on this blog last year. Joanna Parasczuk reports on the evolution of a data breach that started in 2006 as an insider breach and ultimately affected everyone in Israel, it seems: The Tel Aviv...
Read more of this article
California Dept of Social Services notifying over 700,000 In-Home Supportive Services providers and recipients after payroll data lost in the mail
California Department of Social Services is notifying over 700,000 In-Home Supportive Services providers and recipients that their data may have been lost. An FAQ on the department’s web site explains that CDSS became aware...
Read more of this article
UNC-Charlotte breach affects 350,000
Remember that breach that the University of North Carolina at Charlotte disclosed back in February? Well, they’ve finally released some details and it’s a doozy. Chris Dyches reports: An investigation into the incident...
Read more of this article
Hackers Threaten University of Pittsburgh with Disclosure of Students’ Personal Info if Demands Are Not Met
Jacob Kleinman reports: Members of the hacktivist collective calling itself “Anonymous” are targeting the University of Pittsburgh, and threatening to release a wealth of private information regarding the school and...
Read more of this article
Columbia U. notifies faculty and proprietors that their SSN and bank account numbers were exposed on the Internet for two years
A reader kindly alerted me to the fact that Columbia University sent out breach notices last week. The letter, dated April 21, informed recipients that 3,000 current and former employees, as well as 500 sole proprietors had...
Read more of this articleKnow About a Breach I’ve Missed?
If you know about a breach that should be included on this site, please let me know:breaches[at]databreaches.net. It's especially helpful if you can provide links to documentation or scan in a copy of any notification you received.