Exposure

Second Data Breach at Kentucky Unemployment System

Sarah Coble reports: Kentucky’s unemployment system appears to have suffered its second data breach in four months after a claimant reported being able to view another claimant’s personal data. The reporter of the alleged breach logged on to the Office of Unemployment Insurance’s (OUI) online system on July 27 to work on their unemployment application. While...

Robocall Legal Advocate Leaks Customer Data

Brian Krebs reports: A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go...

UK: Hospital investigating possible confidentiality breach

Emily Roberts reports: Personal details about women who have had a stillbirth appear to have mistakenly been published online by the trust which runs Basingstoke hospital. Three reviews were published in two different documents in June and July, providing details including the date and time of the stillbirth, the women’s age and BMI,...

Leaky S3 buckets have gotten so common that they’re being found by the thousands now, with lots of buried secrets

Shaun Nichols reports: The massive amounts of exposed data on misconfigured AWS S3 storage buckets is a catastrophic network breach just waiting to happen, say experts. The team at Truffle Security says its automated search tools were able to stumble across some 4,000 open Amazon S3 buckets that included data companies would not want public, things...