Seth Austin reports: The Kentucky Energy and Environment Cabinet (EEC) announced they discovered a data security breach on September 8, 2021. According to EEC, unredacted mining permit applications containing some mine owners’ and controllers’ personal information was available for public inspection at Department of Natural Resources’ field offices and on an EEC hosted website....
Ian Cross reports: Personal information for the entire Bay Village High School senior class, including grades, student ID numbers and test scores, was accidentally emailed to the families of each senior last week, according to a notice sent to families in the district. At about 8:53 a.m. on Tuesday, Nov. 23, a Bay High...
We have all read about mailing errors by now. In fact, such errors are one of the biggest types of HIPAA breaches — providing one patient’s information to another, or a mail merge error, or something similar. But here’s a case in the U.K. that serves as a painful reminder that such breaches can...
Bob Diachenko reports: On Nov 5th, I discovered an exposed database that appeared to belong to live sex cam website Stripchat. The exposed database makes multiple references to Stripchat and consists of nearly 200 million records. Exposed data includes email addresses, usernames, and IP addresses, among other info, seemingly about the site’s users and...
The Moscow Times reports: A database of Russians who purchased fake coronavirus vaccine certificates has leaked online, the Kommersant business daily reported Friday, with experts warning that the buyers are now at risk of both blackmail and jail time. With vaccine skepticism rampant, many Russians have turned to the black market to purchase counterfeit QR code passes...
Dean Pritchard reports an update to a previously disclosed breach: A class-action lawsuit will proceed against the province after confidential information about nearly 9,000 children with disabilities was mistakenly sent to agencies that provide services to them and community advocates. An email notice was delivered to potential claimants this week notifying them about the...
The following press release concerns breaches that occurred five years ago. NEWARK – Acting Attorney General Andrew J. Bruck and the Division of Consumer Affairs today announced that two printing companies have agreed to pay $130,000 in penalties and to implement new security policies to resolve allegations they violated the New Jersey Consumer Fraud Act...
Paul Kunert reports: It’s never good when a boat operator talks of a breach, even if in this case it’s a figurative one. Brittany Ferries has told some customers that an unforeseen technical glitch introduced after “routine” website maintenance had left their accounts wide open, potentially exposing very sensitive details to anyone who knew...
David Lee reports: Data transparency activists released a massive 600-hour leak of mostly Dallas Police Department helicopter footage, raising more questions about the city’s data security protocols three months after DPD admitted to a 22-terabyte deletion of case data that resulted in the release of criminal defendants awaiting trial. Distributed Denial of Secrets —...
VA: Hundreds of parents, students, staff at risk of identity theft as personal records found tossed on floor at Old Pulaski Middle School