WASC Threat Classification: Insufficient Authentication, Misconfiguration
A student at a community college in Sacramento who was "Googling" himself last month found disconcerting information when he typed his name into the popular Internet search engine
Date:
10 March 2007
Incident Type: Security Breach
WASC Threat Classification: Insufficient Authentication, Misconfiguration
Personal information for about 2,700 University of Idaho employees was inadvertently posted at the school's Web site for 19 days in February, though officials say it was not easy to access and there's no reason yet to believe it was misused.
References:
Date:
02 March 2007
Incident Type: Security Breach
WASC Threat Classification: Misconfiguration
Personal information about 2,000 patients was mistakenly published on the hospital's web site. The leakage was discovered only when a patient found her information when "Googling" herself.
The information included personal data such as social security numbers, birth dates, address, phone number, insurance numbers and in some cases the reason for the visit.
References:
This work is licensed under the Creative Commons Attribution License. To view a copy of this license, visit http://creativecommons.org/licenses/by/2.5/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA.
