Dec 152018
 

 A statutory health body has apologised for a data breach in which the email addresses of unsuccessful applicants to a job were mistakenly shared.

In an email informing individuals that their application had been unsuccessful, the email addresses of about 200 other applicants were shared.

The email, seen by TheJournal.ie, was sent by the Pre-Hospital Emergency Care Council (PHECC) on Tuesday. PHECC is an independent statutory body which sets the standards for education and training for pre-hospital emergency care in Ireland. 

Read more on TheJournal.ie.

Dec 142018
 

Courtney Godfrey reports:

Taking work home with you sounds like something a hardworking employee would do, unless that work includes private, sensitive data like it did with one employee in Wright County.


The county knew about the data breach for seven months before notifying possible victims.


It wasn’t until FOX 9 filed a public records request that Wright County notified victims of the data breach.

Now it is seven months after the county became aware that more than 1,000 people were potential victims of the breach.

Read more on Fox9.  It seems that the breach was the employee taking PII home on a USB and then transferring the files/data to his home computer. There’s no report of any misuse or sale or other exposure of the data. 

Update:  KSTP reports that about 72,000 are being notified. And they got the former employee to talk to them (wow!). That individual says that he was an hourly worker and had been told he had to go home, so he took the work with him. He insists he didn’t do anything nefarious with it, but of course, isn’t it possible that his home computer had some malware or compromise at some point? 

Dec 142018
 

Hilary Bird reports:

An N.W.T man says he found hundreds of confidential medical records at the Fort Simpson dump.


The documents contain detailed information about patients’ mental health and history of drug use, including applications to addictions treatment facilities, progress reports from those facilities, and detailed notes from one-on-one counselling sessions.


The documents, many of which were on N.W.T. government letterhead, also included social insurance, treaty and health card numbers.

Read more on CBC.ca.

Dec 132018
 

Sergiu Gatlan reports:

According to the Ministry’s public statement, the hackers managed to get their hands on the names, phone numbers, and email addresses of all people who had an account on the French Ariane emergency contact database. 

The platform is used by the French Ministry of Europe and Foreign Affairs to allow citizens traveling abroad to received security updates in case of emergency. 

“Personal data recorded during registration on the Ariane platform have been stolen,” says the Ministry’s statement

Read more on Softpedia.

Dec 132018
 

YLE reports:

The head of the Finnish Transport Safety Agency Mia Nykopp has resigned after a privacy breach that allowed details about every driver in the country to be easily accessible online

[…]

Since July it has been possible to view details of every driver’s license online, and to check if they have a valid license. Trafi shut down the service on Sunday.

Read more on YLE.