Chronology of Data Breaches
Security Breaches 2005 - Present

Posted Date: April 20, 2005
Updated Date: December 31, 2013

Is this your first visit to our Chronology of Data Breaches?

  • Read our FAQ about what we define as a breached record, how we calculate the "total" records breached, our data sources, state breach notice laws, studies and other resources

  • Learn how to use our Chronology and take advantage of its sophisticated search and sort features

  • Get our RSS Feed to see when we add new breaches to the list

What would you like to do?

Chronology of Data Breaches

Custom Sort
Select your desired results. Then click "Go!"

Click or unclick the boxes then select go.


Select features, then click GO.



Help Guide

Can't find the sort feature you're looking for? Click here to download a CSV file of the data breach list as it exisits today.
Breach Total
872,602,323 RECORDS BREACHED
(Please see explanation about this total.)
from 4,377 DATA BREACHES made public since 2005

Save or Print PDF of Entire Breach List including introduction.Save or Print a PDF of Entire Breach List (including introductory FAQ)

Filter breach list before saving or printing PDF. Conduct a search of the Chronology using its sorting features, and Save or Print a PDF of your search results (Select filters)

If you do not have access to PDF, you can print the Chronology in landscape view.

Date Made Publicsort icon Name Entity Type
October 30, 2013 Children's Healthcare of Atlanta
Atlanta, Georgia
MED INSD

500 (No Social Security numbers or financial information exposed)

Children's Healthcare of Atlanta fired and sued an executive for allegedly taking proprietary information that included patient health information, state license numbers for more than 500 health care providers, and other health care provider information.  The executive announced her resignation on October 16 and on October 18 the Hospital discovered that she had emailed sensitive information to her personal email account.  The executive had planned to leave on December 20 but was fired for exposing the Hospital's sensitive information.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 30, 2013 Florida Department of Health
Orlando, Florida
MED INSD

2,300

Those with questions may call (407) 858-1490.

Two former employees used patient records to make lists of names, Social Security numbers, and dates of birth.  The information was created for tax fraud purposes.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 2,300

October 30, 2013 Emerald Garden, Tampa General Hospital
Clearwater, Florida
MED INSD

Unknown

An investigation uncovered sensitive information from Emerald Garden and Tampa General Hospital patients.  A dishonest Emerald Garden employee was arrested in May and sentenced to 37 months in prison for conspiring to misuse the information to file tax refunds.  A contact at Tampa General Hospital also supplied patient information.  

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 29, 2013 MongoHQ
Mountain View, California
BSO HACK

Unknown

MongoHQ's internal system was compromised.  The system allowed certain administrative users to appear as other users.  MongoHQ reset all employee accounts and will enable devices, email, and internal applications after a credential reset and audit.  

 
Information Source:
Media
records from this breach used in our total: 0

October 28, 2013 Allina Health
Minneapolis, Minnesota
MED INSD

3,800 (No Social Security numbers reported)

Roughly 3,800 patients were affected by a breach that involved a former employee at the Inver Grove Heights clinic.  The employee worked as a certified medical assistant and viewed patient records without permission between February of 2010 and September of 2013.  Patients who were seen at any location within Allina Health's system may have had their demographic, clinical, and health insurance information viewed.  The employee also had access to the last four digits of patients' Social Security numbers.  

 
Information Source:
Media
records from this breach used in our total: 0

October 28, 2013 HealthFitness, Gerdau
Minneapolis, Minnesota
MED PORT

Unknown

Those who may have been affected may call (877) 371-7902.

HealthFitness informed Gerdau of a laptop theft that exposed the information of Gerdau employees and employee dependents.  HealthFitness administors Gerdau's health management and wellness program.  The laptop contained Social Security numbers, employee names, spouse names, dates of birth, and health plan elections.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 28, 2013 Dun & Bradstreet
Suwanee, Georgia
BSO HACK

Unknown

A cyber attack occurred during the period between March and April 2013.  Dun & Bradstreet hold information for business marketing and other businesses may have been affected. 

 
Information Source:
California Attorney General
records from this breach used in our total: 0

October 25, 2013 NBC Sports Group
Stamford, Connecticut
BSO PORT

Unknown

Those with questions may call (203) 356-2720.

The August 24 theft of two laptops resulted in the exposure of personal information.  The laptops were stolen in Northern California and it is unclear whether employees, clients, or general consumers were affected.  Names, Social Security numbers, driver's licence numbers, and dates of birth were exposed.

 
Information Source:
Databreaches.net
records from this breach used in our total: 0

October 25, 2013 Michigan State University
East Lansing, Michigan
EDU HACK

Unknown

Michigan State University provided a notification herehttp://police.msu.edu/crimealert10202013.asp

An unauthorized user was able to modify employee banking information.  The breach was discovered on October 18 when two employees reported receiving email confirmations of changes to their direct-deposit designations.  The unauthorized user may have obtained valid payroll credentials by using a phishing attack.  The HR/Payroll systems were taken offline on Friday, October 18 and were expected to become active again on October 21.

 
Information Source:
Media
records from this breach used in our total: 0

October 25, 2013 Yusen Logistics (Americas) Inc.
Secaucus, New Jersey
BSO PORT

Unknown

An unencrypted laptop was stolen from an employee's vehicle sometime around September 23.  It contained a spreadsheet with payroll deduction information for former and current Yusen Logistics Americas employees.  It contained names, Social Security numbers, addresses, and payroll benefit deduction amounts from the period of July 2013 to September 2013.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

October 25, 2013 Mount Sinai Medical Center
Miami Beach, Florida
MED INSD

Unknown

An employee who was working at Mt. Sinani Medical Center through a temp agency was found with patient information during a traffic stop.  Police uncovered a bag that contained over 100 printouts with patient names, Social Security numbers, addresses, and dates of birth.  Photocopies of checks that had been written to Mt. Sinai Medical Center and corresponding billing statements were also found during the February 27, 2013 traffic stop.  Additional information that could be used for fraud was also found at the temporary employee's residence.

The dishonest employee was convicted for involvement in the identity theft and tax refund scheme. It was later discovered that the temp agency gave Mt. Sinai Medical Center false background information about the temporary employee.  Mt. Sinai Medical Center no longer does business with the staffing agency.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 23, 2013 University of Southern Maine
Portland, Maine
EDU PHYS

Unknown

Someone broke into a University van and stole campus keys.  The keys could give them access to nearly 50 Portland and Gorham campus buildings.  The University is in the process of replacing locks of the affected buildings.  Student, personnel, and other records may be accessible.  Faculty, staff, and students were notified of the incident and encouraged to shut electronic devices down when leaving them unattended.  They were also advised to not leave sensitive information or belongings in campus buildings without additional locks.

 
Information Source:
Media
records from this breach used in our total: 0

October 23, 2013 The Fisherman's Restaurant, Radiant Systems
Fort Worth, Texas
BSR DISC

Unknown

Radiant Systems accidentally transmitted Fisherman's Restaurant employee information to another Radiant Systems restaurant customer.  The error occurred from May 3, 2013 through September 24, 2013.  Radiant Systems learned of the issue on September 23 and notifications were sent in early October.  Full names, Social Security numbers, dates of birth, gender, marital status and number of dependents, addresses, telephone numbers, and personnel information were exposed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

October 22, 2013 AHMC Healthcare, Inc.
Alhambra, California
MED PORT

729,000 (about 73,000 Social Security numbers exposed)

A notice from AHMC Healthcare can be found herehttp://www.garfieldmedicalcenter.com/documents/AHMCPressRelease_10-21-revised1.pdf

The October 12 office theft of two laptops resulted in the exposure of patient information from a number of facilities.  Authorities believe a well-known transient was responsible for the thefts.  San Gabriel Valley Medical Center, Garfield Medical Center, Moneterey Park Hospital, Whittier Hospital Medical Center, Greater El Monte Community Hospital, and Anaheim Regional Medical Center patients were affected. Names, Social Security numbers, diagnosis and procedure codes, insurance identification numbers, and insurance payments were exposed.

 
Information Source:
Media
records from this breach used in our total: 73,000

October 22, 2013 Aaron's
Atlanta, Georgia
BSR DISC

Unknown

The US Federal Trade Commission filed a complaint against Aaron's over their practice of monitoring customer activity through software called Detective Mode.  It was determined that customers who rented computers were put at risk for identity theft by Aaron's practice of recording customer keystroke activity, screen shots, and images taken from webcams.  Aaron's may only use tracking technology with the consent of the renter and may not use technology that captures keystrokes, screenshots, images, or sounds on the devices it rents.  

 
Information Source:
Media
records from this breach used in our total: 0

October 22, 2013 Seton McCarthy Clinic, Seton Healthcare Family
Austin, Texas
MED PORT

5,500

The clinic theft of a laptop on October 4 resulted in the exposure of patient information.  The stolen laptop contained names, Social Security numbers, addresses, phone numbers, dates of birth, Seton medical record numbers, patient account numbers, diagnosis information, immunization information, and insurance information of patients who visited the Seton Total Health Partners program, Seton McCarthy, Seton Topfer, and Seton Kozmetsky community health centers.

 
Information Source:
Media
records from this breach used in our total: 5,500

October 21, 2013 Court Ventures (now owned by Experian)
Anaheim, California
BSO DISC

200,000,000

The Experian subsidiary Court Ventures was found to have sold information to unauthorized parties. Consumer Social Security numbers, driver's license numbers, bank account information, dates of birth, and credit card data were given to foreign criminals posing as a legitimate private investigator for over a year.  The information was then resold to Superget.info, Findget.met, and possibly other underground cybercrime sites.

UPDATE (3/10/2014): Last week, Hieu Minh Ngo, a Vietnamese national pleaded guilty to running an identity theft ring out of his home in Vietnam.  Last year the Secret Service created a sting operation that lured him to U.S territory where they arrested him. Mr. Ngo posed as a private investigator and created a contract with Court Ventures, paying access to consumer records and access to a larger database  through US Info Search (also associated with Experian). With this access he was able to gain Social Security data, dates of birth and other records on more than 200 million Americans.

Experian purchased Court Ventures in March of 2012. Court Ventures had agreements with US Info Search.

Very little information regarding the scam was released until last week. Officials stated that he devised numerous schemes, from filing fraudulent tax returns, opening new lines of credit, and racking up huge charges on victims accounts. His theft ring was paid at a minimum $1.9 million dollars between 2007 and February 2013 for the stolen information and made approximately 3.1 million queries on Americans.

 

 
Information Source:
Media
records from this breach used in our total: 200,000,000

October 21, 2013 RGV DME (Durable Medical Equipment)
McAllen, Texas
MED INSD

Unknown

Three people were sentenced to prison for their roles in a scheme to defraud Medicare and Medicaid.  Two of the people owned RGV DME and a third worked for them.  Between early 2004 and late 2011, the three submitted fraudulent claims to Medicare and Texas Medicaid for DME supplies.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 19, 2013 Hospice of the Chesapeake
Pasadena, Maryland
MED INSD

7,035 (No Social Security numbers or financial information exposed)

An employee emailed spreadsheets with sensitive patient information to a personal account in order to work from home.  Names, ages, dates of service, diagnoses, and medical record numbers were in the spreadsheets.  The breach was discovered on August 8 and initially suspected to have been caused by a computer intrusion.  Hospice of the Chesapeake investigated the breach for two months before revealing it to patients.

UPDATE (11/08/2013): Hospice of the Chesapeake notified HHS and stated that 7,035 patients were affected.

 
Information Source:
Media
records from this breach used in our total: 0

October 18, 2013 Broward Health Medical Center
Fort Lauderdale, Florida
MED INSD

960 (Last four digits of Social Security numbers exposed)

Federal and local officials discovered a breach that involved the records of 960 patients treated at Broward Health between October of 2012 and December of 2012.  The patients were treated at 1600 S. Andrews Ave. Their names, addresses, dates of birth, insurance policy numbers, and reasons for visits were exposed when an employee took patient documents out of the medical facility.  The last four digits of patients' Social Security numbers are recorded at Broward Health for insurance purposes and were also exposed. 

 
Information Source:
Media
records from this breach used in our total: 0

October 18, 2013 BW Arthritis and Rheumatology, Good Samaritan Hospital, MedStar Health Inc, Padder Health Service, LLC
Glen Burnie, Maryland
MED INSD

55

Four people face charges related to misusing patient information to make more than $750,000 of fraudulent purchases.  At least two of the people worked at medical offices and at least one had direct access to a health care database.  One of the dishonest employees worked at Paddar Health Service between June of 2010 and February of 2012 and at BW Arthritis and Rheumatology between February of 2012 and February of 2013.  Another dishonest employee worked at Good Samaritan Hospital from July of 2008 to July of 2010.  

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 55

October 18, 2013 Long Island Rail Road
Long Island, New York
BSR CARD

Unknown

Ticket vending machines associated with Long Island Rail Road were discovered to have been compromised.  Customers who used their debit and credit cards at the machines may have had their information recorded and used to create fraudulent payment cards.  Tiny cameras were placed on the machines and hidden in thin black strips.  A total of seven machines in Bayside, Garden City, Great Neck, Greenvale, and Merillon Avenue were compromised.

 
Information Source:
Media
records from this breach used in our total: 0

October 17, 2013 California State University Sacramento (Sacramento State University)
Sacramento, California
EDU HACK

1,800

In August, Sacramento State University was notified that a computer server had been hacked. It contained the Social Security numbers, driver's license numbers, and other personal information of staff members.  The cause and extent of the breach were determined in late September and staff members were notified in mid-October.

 
Information Source:
Media
records from this breach used in our total: 1,800

October 17, 2013 Datapak Services Corporation
Howell, Michigan
BSO HACK

Unknown

Those with questions may call (855) 398-6434

Datapak Services discovered that its online systems had been infected by malware since March 5, 2013.  Customer names, addresses, payment card numbers, expiration dates, and CVV codes may have been accessed by an unauthorized party. 

 
Information Source:
Databreaches.net
records from this breach used in our total: 0

October 17, 2013 University of Arizona
Tucson, Arizona
EDU HACK

9,080

 A July 29 breach of the University of Arizona's College of Law website allowed intruders to access class rosters and applicant lists.  University of Arizona law students and applicants may have had their names, Social Security numbers, usernames, and passwords exposed. 

 
Information Source:
Media
records from this breach used in our total: 9,080

October 17, 2013 Ouidad
Danbury, Connecticut
BSR HACK

Unknown

Hackers were able to access Ouidad's customer database between June 30 and July 4 of 2013.  Ouidad account information, names, credit card numbers, credit card security codes and expiration dates, billing addresses, email addresses, and phone numbers were exposed. 

 
Information Source:
Media
records from this breach used in our total: 0

October 17, 2013 Eagleton School, Castro School, Munroe School
Morrison, Colorado
MED PORT

100 (No Social Security numbers or financial information reported)

The theft of a nurse's suitcase resulted in the exposure of student medical information.  The suitcase contained a thumb drive.  The theft occurred on October 5 and about 100 parents received notification of the breach.  Medications and other health-related information were on the thumb drive.  Addresses and Social Security numbers were not included in the compromised data.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 16, 2013 Memorial Hospital of Lafayette County, Healthcare Management System
Darlington, Wisconsin
MED DISC

6,000 (No Social Security numbers or financial information exposed)

Memorial Hospital of Lafayette learned on August 6 that some patients had their financial statements sent to other people.  The mistake was caused by an error in the settings of an unnamed third-party billing vendor's system.  Patients who were seen at the hospital as far back as 2001 may have had their information sent to the wrong address. Patient names, addresses, identificaiton numbers, account numbers, dates of services, and the charges associated with services received were exposed.

UPDATE (11/08/2013): The billing vendor was Healthcare Management System.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

October 13, 2013 PR Newswire
New York, New York
BSO HACK

Unknown

Customer usernames and encrypted passwords were accessed and taken by hackers on or after March 8, 2013.  Hackers may have had access to the news release services of companies that use PR Newswire.  The breach is related to the Adobe hack that was revealed in early October of 2013.  

 
Information Source:
Media
records from this breach used in our total: 0

October 12, 2013 Gordon Supply Company
Glenside, Pennsylvania
BSF HACK

400

A woman found two bags of personnel records in her backyard in mid-August.  The woman called the cops after discovering the sensitive information.  Social Security numbers, driver's license photos, addresses, phone numbers, medical information, dates of birth, emergency contacts, payroll history, and tax documents were exposed.  The breach occurred after the building was abandoned and the files were not checked before being discarded.  An estimated 400 people were affected.

 
Information Source:
Media
records from this breach used in our total: 400

October 11, 2013 Google Chrome
Mountain View, California
BSO DISC

Unknown

A data management firm discovered that Chrome browser users may have had their personal information stored on the hard drives of their computers without their knowledge or consent.  Google Chrome regularly stores names, street addresses, email addresses, phone numbers, bank account numbers, credit card numbers, and Social Security numbers in web browsers for later use.  It was not known that Chrome's cache also stores the information in plain text.

 
Information Source:
Media
records from this breach used in our total: 0

October 11, 2013 Hope Family Health
Westmoreland, Tennessee
MED PORT

8,000

The August 4 theft of an unencrypted laptop from an employee's home may have resulted in the exposure of patient information.  Current and former patients may have had their names, Social Security numbers, dates of birth, and billing addresses exposed.  The information came from financial records, patient account information, and billing records dating back to 2005.

 
Information Source:
Media
records from this breach used in our total: 8,000

October 11, 2013 Monterey County Department of Social Services
Salinas, California
GOV HACK

Unknown

A Monterey County computer was compromised during the evening of March 17.  It was connected to the California State Network and contained the information of individuals who received public assistance benefits through Monterey County Department of Social Services between 2002 and 2009.  First and last names, Social Security numbers, addresses, phone numbers, and dates of birth were exposed.  

 
Information Source:
Media
records from this breach used in our total: 0

October 11, 2013 Sentara Healthcare, Sentara Virginia Beach General Hospital
Virginia Beach, Virginia
MED INSD

3,700

Two dishonest nurse aides gathered information from at least 12 patients in order to file fraudulent tax returns.  The breach occurred between September of 2011 and April of 2013.  Some of the patients were from Sentara Virginia Beach General Hospital.  The nurses' aides were indicted on charges of conspiracy to defraud the government.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 3,700

October 10, 2013 Nordstrom
Aventura, Florida
BSR CARD

Unknown

Six skimmers were found on registers in one Nordstrom store in Aventura.  Six people were seen tending to the devices on the afternoon of October 5. They came in groups of three and distracted sales people while tampering with the registers, twice.  Skimmers and tiny cameras were installed to collect credit card information.  The information can be used to make fraudulent credit cards.

 
Information Source:
Media
records from this breach used in our total: 0

October 10, 2013 Petrochem Insulation, ASRC Energy Services
San Francisco, California
BSO PORT

Unknown

The July 18 theft of a laptop from an employee's car resulted in the exposure of employee information.  The laptop contained personnel spreadsheets with employee names, Social Security numbers, and employee identification numbers.

 
Information Source:
Media
records from this breach used in our total: 0

October 10, 2013 NHC Healthcare
Oak Ridge, Tennessee
MED PORT

Unknown

Those with questions may call (888) 568-8578.

An unencrypted backup tape was discovered missing. It contained the names, Social Security numbers, dates of birth, home addresses, and medical information of patients.

 
Information Source:
Databreaches.net
records from this breach used in our total: 0

October 10, 2013 City of Wichita - Electronic Procurement Website
Wichita, Kansas
GOV HACK

29,000

Hackers accessed the city of Wichita's electronic procurement website.  Current and former vendors who had worked with the city and employees who had been reimbursed for expenses  since 1997 were affected.  Social Security numbers, taxpayer ID numbers, and bank account information may have been exposed.

UPDATE (11/22/2013): This breach was a result of the Dun & Bradstreet Credibility Corp. breach.  Nearly 29,000 local vendors and employers were affected by the hacking incident that occurred during the weekend of October 5.

 
Information Source:
Media
records from this breach used in our total: 29,000

October 10, 2013 Legal Aid Society of San Mateo County
Redwood City, California
NGO PORT

Unknown

The August 12 office burglary of 10 laptops resulted in the exposure of client information.  The laptops were used by Legal Aid Society attorneys to assist individuals in getting services.  Names, Social Security numbers, dates of birth, medical information, and health information may have been exposed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

October 9, 2013 Minnesota Counties Insurance Trust
St. Paul, Minnesota
BSF INSD

3,000 (No Social Security numbers or financial information reported)

An employee working as a child support officer is accused of making more than 4,000 queries without legitimate cause in a driver and vehicle services database between 2010 and 2011.  Photographs, addresses, and driving records may have been exposed.

UPDATE (10/04/2013): A $2 million settlement has been proposed to end a class action lawsuit.  An insurance trust representing Minnesota counties will pay $500 to the named plaintiffs who initially brought the suit and those who had their information viewed for illegitimate purposes will receive a share of the money "based on the number of times they were illegitimately searched."

 
Information Source:
Media
records from this breach used in our total: 0

October 9, 2013 University of California San Francisco Medical Center (UCSF)
San Francisco, California
MED PORT

3,541 (Unknown number of Social Security numbers exposed)

A total of 3,541 patients were affected by the September 10 theft of an unencrypted laptop from an employee's vehicle.  A subset of the 3,541 patients who were affected had their Social Security numbers exposed.

UPDATE (10/08/2013): Paper documents with patient names, Social Security numbers, dates of birth, and medical information were also stolen.

 
Information Source:
Media
records from this breach used in our total: 0

October 9, 2013 Holy Cross Hospital
Fort Lauderdale, Florida
MED INSD

9,900 

Nearly 9,900 former Holy Cross Hospital patients were affected by a breach that involved a dishonest employee filing fraudulent tax returns.  Names, Social Security numbers, dates of birth, and addresses were exposed between November 2011 and August 2013.

 
Information Source:
Media
records from this breach used in our total: 9,900

October 9, 2013 All Source Medical Management, Scottsdale Dermatology Clinic
Scottsdale, Arizona
MED INSD

1,456

An employee of All Source Medical Management was arrested on suspicion of stealing the credit card information of multiple patients.  The dishonest former employee later admitted to using patient address and credit card numbers to make fraudulent purchases with a co-conspirator.  It is unclear if other clinics and hospitals were affected.

UPDATE (12/16/2013): A total of 1,456 patients were affected.  The data was stolen sometime between January 1, 2013 and October 4.  

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 1,456

October 8, 2013 Rothman Institute (Reconstructive Orthopaedic Associates)
Philadelphia, Pennsylvania
MED INSD

2,350 (No Social Security numbers or financial information involved)

A former employee removed paper copies of daily patient schedules from Rothman Institute on August 11.  The paper copies were taken without permission and were not used for malicious purposes.  Patients who were seen between March 18 and May 10 may have had their names, telephone numbers, dates of birth, locations, staff or physician seen, codes for insurance companies, copay amounts, dates and times of appointments, reasons for visits, and internal-use chart, and code numbers exposed.  Social Security numbers and credit card information were not exposed. The information was not shared with unauthorized parties.

UPDATE (11/08/2013): A total of 2,350 patients were affected.

 
Information Source:
Media
records from this breach used in our total: 0

October 8, 2013 Saint Louis University, Tenet Healthcare Corporation, SSM Health Care
Saint Louis, Missouri
MED HACK

3,000 (200 Social Security numbers exposed)

On August 8, Saint Louis University learned that about 10 employees had their direct deposit information changed after several malicious phishing emails were sent to employees on July 25.  About 20 phishing emails were sent and several employees provided their account information. No unauthorized transactions have occurred because of the email scam.  Additionally, patients who were treated or reviewed at facilities owned by the Tenet Healthcare Corporation or SSM Health Care may have had their information exposed.

 
Information Source:
Media
records from this breach used in our total: 200

October 7, 2013 PayJunction
Santa Barbara, California
BSF HACK

Unknown

A number of sales agents were affected when a data backup of PayJunction's internal business system was inappropriately accessed.  The unauthorized access occurred in July and was discovered in late September.  

 
Information Source:
Databreaches.net
records from this breach used in our total: 0

October 7, 2013 Walgreens
Anaheim, California
BSR STAT

Unknown

A breach at a Walgreens in Anaheim resulted in the exposure of customer information.  Thieves stole a computer and paper records in December of 2012.  The theft was discovered on December 31 and occurred on December 28.  The burglary occurred in Crescent's billing center.  Names, Social Security numbers, addresses, phone numbers, health insurance information, dates of birth, and medical information were exposed.  

 
Information Source:
Media
records from this breach used in our total: 0

October 6, 2013 CaroMont Health
Gastonia, North Carolina
MED DISC

1,310 (No Social Security numbers of financial information reported)

An email with patient information was sent to an unauthorized person.  Names, dates of birth, addresses, diagnoses, and medications were exposed.

 
Information Source:
Media
records from this breach used in our total: 0

October 4, 2013 Adobe, PR Newswire, National White Collar Crime Center
San Jose, California
BSR HACK

2.9 million (38 million user emails and passwords exposed)

Hackers obtained the customer information of nearly 3 million Adobe custoemrs who used Photoshop, InDesign, Premiere, and other Adobe software products.  Customer IDs, encrypted passwords, names, encrypted credit or debit card numbers, expiration dates, and other information related to customer orders were exposed.  Anyone who bought software directly from Adobe's website is advised to change their Adobe account passwords.

UPDATE (10/11/2013): Hackers kept the source code on a hidden, but unencrypted server.

UPDATE (10/21/2013): A second breach related to the initial one in early October caused Adobe to reset client passwords.

UPDATE (10/29/2013): An investigation revealed that the encrypted passwords of approximately 38 million active users were also exposed.  Adobe IDs were also compromised and were reset by Adobe after the breach.

UPDATE (11/20/2013): Around 42 million passwords for the Australian-based online dating service Cupid Media were also found on the same server that contained stolen Adobe, PR Newswire, and National White Collar Crime Center information.

UPDATE (11/25/2013): Some estimate that 152 million Adobe ID accounts were in a file that began circulating the internet in late October.  Adobe systems Inc has encountered delays in trying to notify all customers of the issue since it was discovered 10 weeks ago. 

 

 
Information Source:
Media
records from this breach used in our total: 2,900,000

October 4, 2013 Buckeye Check Cashing
Dublin, Ohio
BSF PORT

Unknown

The June 27 car theft of a laptop resulted in the exposure of customer information.  Names, Social Security numbers, addresses, and bank account information were exposed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

Breach Total
872,602,323 RECORDS BREACHED
(Please see explanation about this total.)
from 4,377 DATA BREACHES made public since 2005
Showing 351-400 of 4377 results


X

Sign In!

Loading