Exposure

ICE releases thousands of immigrants affected by data breach

Hamed Aleaziz reports: Immigration and Customs Enforcement officials have released nearly 3,000 immigrants whose personal information, including birth dates and detention locations, was inadvertently posted on the internet by the U.S. government, according to government officials. Officials accidentally posted the names, birth dates, nationalities and detention locations of more than 6,000 immigrants who claimed...

A Police App Exposed Secret Details About Raids and Suspects

Dhruv Mehrotra reports: Last September, law enforcement agents from five counties in Southern California coordinated an operation to investigate, raid, and arrest more than 600 suspected sex offenders. The mission, Operation Protect the Innocent, was one of the largest such raids in years, involving ​​over 64 agencies. According to the Los Angeles Police Department, it was...

Ca: Doctor’s records improperly disposed

Patient records from a newly closed medical practice were not properly disposed of the privacy commissioner has ruled. Dr. Lalita Malhotra, who retired earlier this year, failed to have all records shredded by a company that deals in secure shredding and some ended up whole in a recycling facility. “Dr. Malhotra states that she...

Recent decision by the PDPC

During the pandemic, a lot of entities took steps to collect information to try to limit the spread of COVID. Thomson Medical had a portal for visitors, but instead of the data being stored in a secured database, it was stored in both a secured database and one that could be accessed by the...

Au: City of Port Phillip Notification of Potential Data Breach

City of Port Phillip Statement from Chris Carroll, CEO City of Port Phillip The City of Port Phillip is committed to being transparent around incidents that may affect you and your data.  As such, it is appropriate to let you know of an incident that occurred recently on our online customer portal, My Port...

Au: 130,000 Telstra customers exposed in data leak

Ben Cubby reports: Personal information of more than 130,000 Telstra customers has been exposed in the latest large-scale privacy breach to strike big Australian companies. Telstra said a “misalignment of databases” rather than hacking was responsible for the breach, which saw customer details wrongly made available on the online White Pages and via directory...

VA admits to improperly disclosing COVID-19 vaccine data for 500,000 staff

Nihal Krishan reports: The U.S. Department of Veterans Affairs has admitted that it failed to adequately protect COVID-19 vaccination status data for about 500,000 of its employees. Following an internal investigation by the VA’s Data Breach Response Service, the agency removed a spreadsheet containing personal details including vaccination status, according to a notice sent to the...

Florida state tax website bug exposed filers’ data

Zack Whittaker reports: A security flaw on the Florida Department of Revenue website exposed at least hundreds of taxpayers’ Social Security numbers and bank account numbers, a security researcher found. Kamran Mohsin said the security flaw — now fixed — allowed him, or anyone else who was logged in to the state’s business tax registration...

NZ: ‘Unfortunate and regrettable incident’: Inside the Otago University data breach

Hamish McNeilly reports: An online loophole allowed a handful of users to access a veritable treasure trove of information at the University of Otago. The types of information, revealed to Stuff following an Official Information Act request, included phone numbers, addresses, passport details, exam results, police vetting lists, academic integrity investigation invitation letters, referee...