Exposure

VA: Hundreds of parents, students, staff at risk of identity theft as personal records found tossed on floor at Old Pulaski Middle School

Kelsey Jean-Baptiste reports: Concerns about confidential records being found thrown on the ground of the Old Pulaski Middle School have many worried. Hundreds of students, teachers, and staff are now at risk of having their private information stolen. Pulaski School superintendent, Dr. Kevin Siers says the documents date back to the 1970s. In pictures...

Manitoba sued over privacy breach involving 9,000 children

Dean Pritchard reports an update to a previously disclosed breach: A class-action lawsuit will proceed against the province after confidential information about nearly 9,000 children with disabilities was mistakenly sent to agencies that provide services to them and community advocates. An email notice was delivered to potential claimants this week notifying them about the...

NJ Acting AG Bruck Reaches Settlement with Two Printing Companies over Improper Disclosures of Protected Health Information

The following press release concerns breaches that occurred  five years ago.  NEWARK – Acting Attorney General Andrew J. Bruck and the Division of Consumer Affairs today announced that two printing companies have agreed to pay $130,000 in penalties and to implement new security policies to resolve allegations they violated the New Jersey Consumer Fraud Act...

Activists leak 600 hours of mostly Dallas police helicopter footage after city’s 22 terabyte loss of criminal case data

David Lee reports:  Data transparency activists released a massive 600-hour leak of mostly Dallas Police Department helicopter footage, raising more questions about the city’s data security protocols three months after DPD admitted to a 22-terabyte deletion of case data that resulted in the release of criminal defendants awaiting trial. Distributed Denial of Secrets —...

Human error blamed for Eastern Ontario school board data breach

Shawna O’Neill reports: Last Saturday evening, an email with a link to private information was sent from the Catholic District School Board of Eastern Ontario to parents and guardians of St. Joseph Catholic Secondary School students. This email is said to have included a link to a document with personal information about hundreds of...

Private proof-of-vaccine app Portpass continues to expose personal data even after relaunch and updates

Robson Fletcher reports: Personal information belonging to more than 17,000 users of the private proof-of-vaccination app Portpass is still unsecured and visible online — including, in some cases, photos of drivers’ licences and passports — despite assurances from the company that its data-security problems have been fixed. The Calgary-based smartphone app was temporarily taken offline in late...

Over 400,000 German Students Data Leaked by a Flawed API

Manikanta Immann reports: Scoolio is a german app for students, used mainly for educational updates, record keeping, and networking. After informing the flaw to Scoolio’s developer, a fix was released this week to patch the bug. In September, a security researcher named Lilith Wittmann of Zerforchung firm has discovered a flawed API in Scoolio, through which she was...

Government data breach exposes Afghans to more danger

Evan Dyer reports: The names of several hundred vulnerable Afghans seeking refuge from the Taliban were recently leaked in emails sent in error by Immigration, Refugees and Citizenship Canada (IRCC), CBC News has learned. The Afghans in question fear reprisals from the Taliban, who took over the country in August. Some are in hiding...