Insider

Nz: ACC ‘has work to do’ to regain trust after privacy breach – Govt

The need for appropriate access controls to sensitive information is an issue everywhere. ACC is New Zealanders’ government-provided insurance coverage for many personal injury claims. As such, the employees have access to files with personal and often sensitive information. 1News reports: ACC “has work to do” to regain Kiwis’ trust that their private information...

NJ: Pinelands Regional School District Investigates Data Breach

Stephanie Faughnan reports: The Pinelands Regional School District acknowledged last week their investigation of a data breach that included information about personnel and students. In mid-March of this year, Superintendent of Schools Dr. Melissa McCooley received notification from the wife former board president Thomas “Tommy” Williams that her husband would be undergoing an emergency...

UNC Hospitals Notifies Patients that Former Employee Used Patient Information for Personal Gain

CHAPEL HILL, N.C.–(BUSINESS WIRE)–UNC Hospitals announced that it has mailed letters to 719 patients whose information may be at risk for identity theft. On September 10, 2021, UNC Hospitals learned that one of its employees was using patient information for personal financial gain. The employee was responsible for handling payments from patients for services...

Salt Lake IT worker arrested, charged with sharing info on undercover officers

Another really serious insider-wrongdoing breach, if the allegations are true. Hayley Crombleholme reports: Salt Lake City Police Chief Mike Brown called allegations that a city employee accessed the names of undercover officers, metro gang files, and other restricted documents “very concerning.” The man was identified in a probable cause document as Patrick Driscoll, an...

PA: Westmoreland County Children’s Bureau employee facing charges for accessing info to tip off a relative of investigation

Hometown2 reports: An Aultman woman is facing charges in Westmoreland County for accessing information from the state’s anonymous Childline and tipping off a relative in relation to a child welfare probe. The Trib reports that 39-year-old Rebecca D. Walker allegedly accessed the system through her job with the Westmoreland County Children’s Bureau.  The report...

Chico State employee charged with hacking, leaking vaccine exemption requests

Austin Herbaugh reports: A Chico State employee has been charged with criminal hacking after officials say he leaked vaccine exemption requests and personal information from some students. 22-year-old Alejandro Benitez is accused of publishing a list of Chico State students who applied for a religious exemption from the university’s COVID-19 vaccine requirement. Read more...

Today’s reminder that small breaches may have the biggest impact

While everyone understandably raises alarms about the possible impact of a ransomware attack, let us never forget that simple, stupid, careless, willful, or just human errors can create significant safety risks for people. A foster family in Missouri is raising concerns about what may be two separate breaches that pose safety risks to them...

Former OnlyFans Employees Could Access Users’ and Models’ Personal Information

Samantha Cole reports: Some former OnlyFans support staff employees still had access to users’ data—including sensitive financial and personal information—even after they stopped working for the company used by sex workers to sell nudes and porn videos. According to a former OnlyFans employee who asked to remain anonymous because they feared retaliation, some ex-employees...