Exposure

Katrina evacuees may have had personal information published on web

Katie Moore of WWLTV reports that although FEMA learned on December 19 that personal information of nearly 17,000 evacuees — including “names, Social Security numbers, addresses, telephone numbers, e-mail addresses and other disaster information” — was published without authorization on scribd.com and esnips.com, many of those affected are just now finding out about it....

Bits ‘n Pieces

In the justice system: Thomas Alan Thompson, a preacher at Calvary Baptist Church, was arrested and charged with identity theft after allegedly praying preying upon his congregation. More. Janice Washington, a Registry of Motor Vehicles employee working at the Braintree branch was arrested on March 19 on federal identity theft charges for selling genuine...

Ohio personnel files found in auctioned file cabinets

The Associated Press reports that someone who purchased file cabinets at a state surplus auction discovered that Ohio personnel files containing Social Security numbers, medical histories, and salaries of five former state employees were still in the cabinet. According to man, when he contacted the Ohio Department of Administrative Services about the situation, first...

FL: Personal information papers found in dumpster

Suncoast News reports that “reams” of personal information, including employment applications, Social Security numbers, and driver’s license numbers, have been found carelessly dumped in a Sarasota dumpster by someone from Westaff Employment, a company that appears to be closed. I expect we will see even more of such reports as small businesses (or large ones)...

TX: Loan documents found in trash

Deborah Wingley of ABC News reports that boxes filled with loan documents containing personal information, including names and Social Security numbers, were found in the trash. The loan applications were taken by Royce Homes. The state is investigating.

LifeWatch notifies patients of exposed data

LifeWatch Corp., a company specializing in ambulatory health monitoring, has notified (pdf) the New Hampshire Attorney General’s Office that due to a configuration error, some patient files were available on public areas of their web site for about three weeks last month. Personal information in the exposed files included the patients’ names, dates of...

UK: ICO takes action against Camden PCT for data blunder

From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has taken enforcement action against Camden Primary Care Trust (PCT) following a breach of the Data Protection Act. Computers containing 2,500 individuals’ names, addresses and medical diagnoses were left beside a skip inside the grounds of St. Pancras Hospital in August 2008. The computers,...

Ca: Retailer resells computer drive full of personal files

Sarah Schmidt of Canwest News Service reports that a Staples Business Depot store in Ottawa sold a returned computer hard-drive on clearance that contained hundreds of personal files on it. Although businesses have responsibility to protect information under PIPEDA, Staples has a warning on all of its receipts that says, “Customers are responsible for...