An NHS health board has found itself in the awkward position of apologising to 37 HIV patients, after accidentally disclosing their identities.
The Dutch Data Protection Authority has confessed to making the same kind of mistake that many others have made before – sending out an email with a long list of email addresses listed for all to see in the Cc: rather than hidden away via the Bcc: field.
The Independent Inquiry into Child Sexual Abuse (IICSA) has been fined £200,000 for revealing identities of abuse victims in a mass email.
A sexual health clinic in Soho, London, is the latest organisation to fall foul of the all-too-common CC/BCC error.
Could someone please send the US Marshals on an email 101 course?
A classic bcc/cc error by the US Marshals Service has leaked the email address of everyone interested in the auction of 30 million bitcoins confiscated from the Silk Road.
Read more in my article for the Hot for Security blog.