Exposure

Kentucky Energy and Environment Cabinet announces data security breach

Seth Austin reports: The Kentucky Energy and Environment Cabinet (EEC) announced they discovered a data security breach on September 8, 2021. According to EEC, unredacted mining permit applications containing some mine owners’ and controllers’ personal information was available for public inspection at Department of Natural Resources’ field offices and on an EEC hosted website....

A mailing error with troubling potential

We have all read about mailing errors by now. In fact, such errors are one of the biggest types of HIPAA breaches — providing one patient’s information to another, or a mail merge error, or something similar. But here’s a case in the U.K. that serves as a painful reminder that such breaches can...

Popular adult cam chat exposed users data: report

Bob Diachenko reports: On Nov 5th, I discovered an exposed database that appeared to belong to live sex cam website Stripchat. The exposed database makes multiple references to Stripchat and consists of nearly 200 million records. Exposed data includes email addresses, usernames, and IP addresses, among other info, seemingly about the site’s users and...

VA: Hundreds of parents, students, staff at risk of identity theft as personal records found tossed on floor at Old Pulaski Middle School

Kelsey Jean-Baptiste reports: Concerns about confidential records being found thrown on the ground of the Old Pulaski Middle School have many worried. Hundreds of students, teachers, and staff are now at risk of having their private information stolen. Pulaski School superintendent, Dr. Kevin Siers says the documents date back to the 1970s. In pictures...

Manitoba sued over privacy breach involving 9,000 children

Dean Pritchard reports an update to a previously disclosed breach: A class-action lawsuit will proceed against the province after confidential information about nearly 9,000 children with disabilities was mistakenly sent to agencies that provide services to them and community advocates. An email notice was delivered to potential claimants this week notifying them about the...

NJ Acting AG Bruck Reaches Settlement with Two Printing Companies over Improper Disclosures of Protected Health Information

The following press release concerns breaches that occurred  five years ago.  NEWARK – Acting Attorney General Andrew J. Bruck and the Division of Consumer Affairs today announced that two printing companies have agreed to pay $130,000 in penalties and to implement new security policies to resolve allegations they violated the New Jersey Consumer Fraud Act...

Activists leak 600 hours of mostly Dallas police helicopter footage after city’s 22 terabyte loss of criminal case data

David Lee reports:  Data transparency activists released a massive 600-hour leak of mostly Dallas Police Department helicopter footage, raising more questions about the city’s data security protocols three months after DPD admitted to a 22-terabyte deletion of case data that resulted in the release of criminal defendants awaiting trial. Distributed Denial of Secrets —...