HCL domain pages exposed sensitive data – including passwords and project analysis reports – for thousands of employees and customers.
The information includes data on all rehab treatments and procedures, linked with patients’ names and other info.
The flaw, which existed in a Shopify API endpoint, has been patched.
A rash of security flaws in the Outdoor Tech CHIPS smart headphones, which fit in ski helmets, allow bad actors to collect data like emails, passwords, GPS location – and even listen to conversations in real time.
The storage server was left open for about a week and exposed everything from sensitive FBI investigations to data related to patients with AIDS.
VOIPO acknowledged that a development server had been accidentally left publicly accessible, and took the server offline.
It’s not clear why the data release wasn’t noticed earlier.
Facebook on Wednesday listed a number of new data access restrictions it is implementing as the social media company looks to prioritize privacy for end users.
Panera is in hot water after sitting on a massive data leak for eight months on its website – and then trying to downplay the amount of customers impacted by the leak.
A Walmart jewelry partners’ misconfigured AWS S3 bucket left personal details and contact information of 1.3 million customers in plain sight.