Exposure

India’s Public Education App Exposed Millions of Students’ Data

Vittoria Elliott and Dhruv Mehrotra report: A security lapse in an app operated by India’s Education Ministry exposed the personally identifying information of millions of students and teachers for over a year. The data was stored by the Digital Infrastructure for Knowledge Sharing app, or Diksha, a public education app launched in 2017. ...

Leak Of Information In Cuban International Monetary Reserves Shows Concerning Dwindling Reserves

Elle Yap reports: A new leak from a Cuban digital platform on Wednesday released figures of the country’s international currency reserves, finding them significantly decreased since 2019, putting the country’s ability to pay its debts in question. CubaDebate, a digital media platform released a 2,000-word analysis of the country’s economy recently from former economy minister...

TSA ‘no fly’ list leaked after being found on unsecured airline server

Chris Pandolfo reports: The Swiss hacker known as “maia arson crimew” blogged Thursday that she discovered the Transportation Security Administration “no fly” list from 2019 and a trove of data belonging to CommuteAir on an unsecured Amazon Web Services cloud server used by the airline. The hacker told The Daily Dot the list appeared to have...

Bits ‘n Pieces (Trozos y Piezas)

CR: Ministry of Public Works and Transportation Hit by Ransomware Costa Rica’s Ministry of Public Works and Transportation (MOPT) has been the target of a ransomware attack by as yet unidentified individuals. The attack was reported by the Ministry of Science, Innovation, Technology and Telecommunications (MICITT) (machine translation): Since early hours of this Tuesday,...

ICE releases thousands of immigrants affected by data breach

Hamed Aleaziz reports: Immigration and Customs Enforcement officials have released nearly 3,000 immigrants whose personal information, including birth dates and detention locations, was inadvertently posted on the internet by the U.S. government, according to government officials. Officials accidentally posted the names, birth dates, nationalities and detention locations of more than 6,000 immigrants who claimed...

A Police App Exposed Secret Details About Raids and Suspects

Dhruv Mehrotra reports: Last September, law enforcement agents from five counties in Southern California coordinated an operation to investigate, raid, and arrest more than 600 suspected sex offenders. The mission, Operation Protect the Innocent, was one of the largest such raids in years, involving ​​over 64 agencies. According to the Los Angeles Police Department, it was...

Ca: Doctor’s records improperly disposed

Patient records from a newly closed medical practice were not properly disposed of the privacy commissioner has ruled. Dr. Lalita Malhotra, who retired earlier this year, failed to have all records shredded by a company that deals in secure shredding and some ended up whole in a recycling facility. “Dr. Malhotra states that she...