Chronology of Data Breaches
Security Breaches 2005 - Present

Posted Date: April 20, 2005
Updated Date: December 31, 2013

Is this your first visit to our Chronology of Data Breaches?

  • Read our FAQ about what we define as a breached record, how we calculate the "total" records breached, our data sources, state breach notice laws, studies and other resources

  • Learn how to use our Chronology and take advantage of its sophisticated search and sort features

  • Get our RSS Feed to see when we add new breaches to the list

What would you like to do?


Click or unclick the boxes then select go.


Select features, then click GO.



Help Guide

Can't find the sort feature you're looking for? Click here to download a CSV file of the data breach list as it exisits today.
Breach Total
929,676,448 RECORDS BREACHED
(Please see explanation about this total.)
from 4,420 DATA BREACHES made public since 2005

Save or Print PDF of Entire Breach List including introduction.Save or Print a PDF of Entire Breach List (including introductory FAQ)

Filter breach list before saving or printing PDF. Conduct a search of the Chronology using its sorting features, and Save or Print a PDF of your search results (Select filters)

If you do not have access to PDF, you can print the Chronology in landscape view.

Date Made Public Name Entity Type
March 22, 2013 Comfort Inn and Suites
Willard, Missouri
BSO INSD

Unknown

A dishonest employee working at a Comfort Inn and Suites in Willard, Missouri during 2009 worked with a conspirator to misuse the information of hotel customers.  They were ordered to pay restitution of $23,000.  The dishonest employee was sentenced to three years of probation and her accomplice was sentenced to 42 months for aggravated identity theft and conspiracy to commit wire fraud.

 
Information Source:
Media
records from this breach used in our total: 0

March 22, 2013 University of Mississippi Medical Center (UMMC)
Jackson, Mississippi
EDU PORT

Unknown

A laptop used by UMMC clinicians was discovered missing on January 22.  The password-protected laptop contained information from patients who entered the hospital between 2008 and 2013.  Patient names, Social Security numbers, addresses, diagnoses, medications, treatments, dates of birth, and other personal information may have been exposed.

UPDATE (04/25/2013): The laptop may have been lost or stolen in November of 2012.

 
Information Source:
Media
records from this breach used in our total: 0

April 1, 2013 Granger Medical Clinic
West Valley City, Utah
MED PHYS

2,600 (No SSNs or financial information reported)

A total of 2,600 medical appointment records disappeared before they could be shredded.  The records contained patient names, dates of appointments, times of appointments, and reason for appointment.  No medical claim information, financial information, or Social Security numbers were exposed.

 
Information Source:
Media
records from this breach used in our total: 0

March 21, 2013 National Institute of Aerospace, National Aeronautics and Space Administration (NASA)
Hampton, Virginia
NGO INSD

Unknown

A Chinese national who worked as a contractor for the National Institute of Aerospace had access to NASA's Langley Research Center.  He was caught boarding a plane with two external hard drives, two laptops, a memory stick, and an SIM card on March 16.  He originally did not reveal the second laptop, hard drive, and SIM card when detained.  The information he was attempting to steal was not revealed.  

 
Information Source:
Media
records from this breach used in our total: 0

April 5, 2013 Scribd
San Francisco, California
BSO HACK

100,000 (No SSNs or financial information exposed)

A hack affected less than 1% of Scribd's 50 million users. "A few hundred thousand" users had their passwords stolen.  Users who were affected received instructions for resetting passwords.  The passwords were encrypted and it is unlikely that hackers were able to decrypt and use the passwords before Scribd and Scribd users learned of the breach.

 
Information Source:
Media
records from this breach used in our total: 0

April 16, 2013 Schneck Medical Center
Seymour, Indiana
MED DISC

3,000 (no SSNs or financial information reported)

A Schneck Medical Center employee gave a presentation that was later placed online.  People who searched through the files from the presentation could find the names of 3,000 Schneck Medical Center patients.  The presentation was removed from online and Google removed all cached information from the Internet.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

March 22, 2013 United Shore Financial Services, LLC
Troy, Michigan
BSF HACK

Unknown

A computer intrusion resulted in the exposure of names, Social Security numbers, contact information, dates of birth, driver's license numbers, and financial account information. The breach occurred sometime around December 2, 2012. 

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 21, 2013 Insurance Co. of the West (ICW)
Del Mar, California
BSF PHYS

Unknown

Confidential medical records were found under a freeway by a concerned citizen. A local news team investigation traced the documents back to the insurance claims processor ICW. ICW reported that the issue occurred on February 28 when a bin with files broke open on the way to a disposal site.  An unnamed document destruction company responsible for the documents was replaced. Names, dates of birth, Social Security numbers, and other sensitive and medical information were on the documents. 

 
Information Source:
Media
records from this breach used in our total: 0

March 22, 2013 OCS America, Inc.
Long Island City, New York
BSF HACK

Unknown

A phishing attack affected an OCS America computer on March 4, 2013.  The computer contained names, Social Security numbers, addresses, telephone numbers, dates of birth, job titles, and salary information.  It appears that only one computer was affected. 

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 22, 2013 TLO, LLC
Boca Raton, Florida
BSO HACK

Unknown

On January 15, 2013 TLO discovered that there had been limited fraudulent access to their system.  A hacker or hackers were able to access names, Social Security numbers, and driver's license numbers between August 2012 and January 2013. 

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 26, 2013 The Finish Line, Inc.
Indianapolis, Indiana
BSR PORT

Unknown

The January 11 theft of an employee's laptop resulted in the exposure of sensitive information.  The laptop was stolen from the employee's vehicle and contained names, Social Security numbers, and other information related to current and former Finish Line staff.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 27, 2013 Rollins, Inc.
Atlanta, Georgia
BSO DISC

Unknown

An administrative error caused a mailing distribution to contain the Social Security numbers of some people.  Rollins learned of the issue on March 12.  The Rollins TODAY quarterly issue mailed during the week of March 4 contained Social Security numbers within a number sequence on the mailing label.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 28, 2013 Citi
Irving, Texas
BSF DISC

Unknown

Current and former parties involved in a bankruptcy proceeding for a Citi loan may have had their information exposed.  Citi filed legal documents that should have been concealed but were accidentally made available online.  The information, which included personally identifiable and loan related information, could be exposed and read by any person who accessed court records.  The issue was addressed and Citi is not aware of any  instances where information was accessed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

April 1, 2013 Tennis Express, American Express
Houston, Texas
BSR HACK

Unkown

A hacker or hackers accessed Tennis Expresses computer network on or around December 19, 2012.  The breach was discovered in mid-February of 2013.  The issue was caused by a vulnerability in a third party vendor program.  Names, addresses, credit card numbers, verification value, and expiration dates may have been exposed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

April 2, 2013 Ellison Systems, Inc., Shoplet.com
New York, New York
BSR HACK

Unknown

A hacker may have accessed credit card information, names, and addresses associated with Shoplet accounts.  The breach was discovered on January 11, 2013.  A new firewall was installed and Ellison Systems, Inc. moved their database server to a more secure zone.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

April 3, 2013 Computer Sciences Corporation
Raleigh, North Carolina
BSO PORT

Unknown

A thumb drive with information from the Medicare Exclusion Database was placed on a thumb drive.  The thumb drive was discovered to be missing from the CSC facilities in Raleigh, North Carolina in early March; it had most likely been lost in late February.  The thumb drive contained names, Social Security numbers, federal tax Employer Identification numbers, dates of birth, and other information.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

April 12, 2013 Chapman University
Orange, California
EDU DISC

Unknown

An administrative error caused the personal information of some students to be exposed online.  The issue was discovered on February 27.  Authenticated users of Chapman's on-campus network could have viewed names, Social Security numbers, student identification numbers, and dates of birth.  The documents were blocked from access by unauthorized users once the breach was discovered.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

March 29, 2013 American Express
New York, New York
BSF HACK

Unknown

Hackers were able to access and disrupt American Express' website. American Express was offline for two hours.  

 
Information Source:
Media
records from this breach used in our total: 0

March 28, 2013 JPMorgan Chase
New York, New York
BSF HACK

Unknown

JPMorgan Chase's website was taken offline by a hacker or hackers. The website was made unavailable by a denial-of-service attack.  Chase.com was down for around a day.

 
Information Source:
Media
records from this breach used in our total: 0

April 7, 2013 Works Bakery Cafe
Portland, Maine
BSR HACK

Unknown

Customers who used a debit or credit card at any Works Bakery Cafe location are advised to check their payment cards for fraudulent activity.  A breach occurred when malware was introduced to the Works Bakery Cafe computer system.  Locations in Durham, Manchester, Keene, Concord, Brattleboro Vermont, and Portland Maine were affected.

 
Information Source:
Media
records from this breach used in our total: 0

April 7, 2013 Agincourt Wallboard
Westbrook, Maine
BSR HACK

Unknown

On, January 19, Agincourt Wallboard notified employees of a breach of its payroll system.  Agincourt Wallboard became aware of the issue on January 17 when eight employees reported receiving a physical payroll check.  Someone had entered Agincourt Wallboard's payroll vendor and edited information without authorization so that the employees received a physical check rather than an electronic deposit.  The person who hacked into the payroll vendor also attempted to change the bank routing information for 10 of its employees.  Agincourt Wallboard is investigating how the hacker could have obtained the administrator's credentials and notified employees of the issue immediately.  Agincourt Wallboard also learned that five of the computers on its network were infected with malware called a Trojan horse.

 
Information Source:
Media
records from this breach used in our total: 0

April 9, 2013 VUDU
Santa Clara, California
BSO PORT

Unknown

Those with questions may call 855-968-8838 or email passwordreset@vudu.com.

A March 24, 2013 VUDU office theft resulted in the exposure of customer information.  Hard drives with customer names, addresses, email addresses, account activity, dates of birth, and encrypted passwords were stolen.  Customers who used their VUDU passwords for other sites should change the passwords on other sides as well.

 
Information Source:
Media
records from this breach used in our total: 0

April 9, 2013 Hospice Palliative Care of Alamance-Caswell, LifePath Home Health
Burlington, North Carolina
MED PORT

5,300 (Unknown number of Social Security numbers)

The February 24 burglary of three laptops resulted in the exposure of patient information.  The laptops were stolen from the hospital in addition to needles, syringes, and miscellaneous items.  The unencrypted laptops contained emails that had sensitive patient information.

 
Information Source:
Media
records from this breach used in our total: 0

April 10, 2013 Schnuck Markets Inc.
St. Louis, Missouri
BSR HACK

Unknown

A lawsuit was filed against Schnucks Markets Inc. after customers learned that Schnucks failed to warn customers about a data breach within two weeks.  On March 15, Schnucks learned that a portion of their loyalty cards were affected, but waited until March 30 to send a press release.   Customer payment card numbers and expiration dates were exposed through a magnetic strip swiping security breach. No customer names were exposed.

UPDATE (04/15/2013): The breach affected about 2.4 million customer debit and credit cards at 79 Schnucks locations.  Payment cardholders' contact and identifying information were not exposed.  Customers who visited a Schnucks between December of 2012 and March 29, 2013 may have been affected.

UPDATE (05/24/2013): A class action lawsuit was filed against Schnuck Markets in early May.  Schnuck Markets claims that the the lawsuit belongs in federal court because of the case's scope and damages.  The lawsuit sought damages from Schnucks for time and effort that affected individuals had to put into monitoring and managing compromised credit card information.  The lawsuit also alleges Schnucks of willful and wanton neglect, a charge for which punitive damages are available under Illinois law.  However Schnucks states that the "time and effort" claims for Illinois alone easily exceed the $5 million threshold for federal consideration.

UPDATE (06/21/2013): A new estimate from Schnucks states that 500,000 unique credit or debit cards may have been involved.

UPDATE (07/11/2013): After a review, the Missouri Attorney General's office has stated that Schnuck Markets did not violate state data security law.

UPDATE (08/31/2013): Liberty Mutual Insurance Co. is suing Schnuck Markets Inc. Liberty Mutual claims that it should not be held liable for eight lawsuits filed against Schnucks.

 
Information Source:
Media
records from this breach used in our total: 0

April 12, 2013 Pentagon
Washington, District Of Columbia
GOV UNKN

Unknown

Lawyers working with Guantanamo Bay detainees had to pause their work after being told to stop using the Pentagon's computer system.  An unspecified issue left over 500,000 emails unsafe to access or deleted from a Pentagon common drive. The breach left defense files unsecured and it may have been possible for prosecutors to view confidential defense emails.

 
Information Source:
Media
records from this breach used in our total: 0

April 15, 2013 Wawa
Burlington, New Jersey
BSF CARD

Unknown

Customers who shopped at a Wawa on Salem Road in Burlington, New Jersey noticed fraudulent purchases on their credit cards.  Investigators were able to trace the fraud to four people and arrest them. The four men were charged with credit card theft, credit card fraud, identity theft, and having electronic devices for criminal use.  More victims are expected to be found.

 
Information Source:
Media
records from this breach used in our total: 0

April 17, 2013 Arizona Counseling and Treatment Services (ACTS), Cenpatico Behavioral Health of Arizona
Yuma, Arizona
MED PORT

3,000 (No SSNs reported)

The home theft of any employee's laptop and external drive resulted in the exposure of patient information.  The theft occurred sometime between March 18 and March 25; other items were stolen besides the laptop and hard drive.  Neither the laptop nor the hard drive were encrypted. Patients who visited either Cenpatico or its contractor ATS between 2011 and 2013 may have had their names, dates of birth, and treatment plans exposed.

UPDATE (04/17/2013): More than 3,000 patients were affected by the breach.

 
Information Source:
Media
records from this breach used in our total: 0

April 23, 2013 Portal Healthcare Solutions, Glens Falls Hospital
Glens Falls, New York
MED DISC

2,300 (No SSNs reported)

Two patients ran a google search of their names and were able to find their medical information online.  Doctors' reports with medications, medical treatments, lab information, future and past treatment plans, physical examination information, and lifestyle information could be downloaded by anyone who found the information online.  The documents were from November 2012 through January 2013 and discovered online in mid-March.  Portal Healthcare secured the sensitive information on its servers on March 14.  A lawsuit was filed against Glens Falls Hospital, Portal Healthcare Solutions LLC, and Carpathia Hosting in mid-April for patient privacy violations.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

April 26, 2013 LivingSocial
Washington, District Of Columbia
BSO HACK

29 million (no SSNs or financial information reported)

As many as 50 million LivingSocial members may have had their names, email addresses, dates of birth, and encrypted passwords exposed by a cyber attack.  Customer credit card information was not compromised.  Customers were encouraged to change their passwords on any other sites on which they used the same or similar passwords.

UPDATE (05/03/2013): As many as 50 million acounts may have been affected.  It is estimated that 29 million people used LivingSocial and many had multiple accounts.

 
Information Source:
Media
records from this breach used in our total: 0

April 23, 2013 Hostgator
Houston, Texas
BSO INSD

Unknown

An employee was found to have installed backdoors on more than 2,700 company servers.  The issue was discovered the day after the dishonest employee was dismissed.  He worked for Hostgator from September 2011 to February 15, 2012. The dishonest employee was arrested and charged with breach of computer security.

 
Information Source:
Media
records from this breach used in our total: 0

April 23, 2013 Macy's
Lafayette, Indiana
BSR DISC

Unknown

A man guessed or accessed the Social Security numbers of Macy's customers in order to exploit a Macy's policy for the purpose of making fraudulent purchases.  He then created ID cards that paired his picture with the customer information.  A Macy's policy allowed him to charge purchases to the accounts of other Macy's customers by using their Social Security numbers and showing his falsified IDs.  

 
Information Source:
Media
records from this breach used in our total: 0

April 23, 2013 City of Monroeville
Monroeville, Pennsylvania
MED DISC

Unknown

A number of inappropriate security practices may have exposed the information of people who called Monroeville's 911 dispatch center, police department, fire department, or EMS department in 2012 or 2013.  Monroeville is being investigated for possible violations of federal health privacy laws.  An August 2012 complaint to the U.S. Department of Health and Human Services' Office for Civil Rights stated that protected health information may have been given to a former police chief via email and that weak and poorly managed usernames and passwords were used to access a database of 911 callers' medical information.

UPDATE (07/18/2013): Monroeville 911 records from August 2010 through February 2013 were available to volunteer firefighters and former and inacitive emergency responders.  There was no protocol in place for removing the former personnel from the list of people who received 911 dispatch data.

 
Information Source:
Media
records from this breach used in our total: 0

April 28, 2013 Orthopedic Physician Associates, Proliance Surgeons
Seattle, Washington
MED PORT

Unknown

Proliance Surgeons' breach notice can be found here: http://proliancesurgeons.adhostclient.com/images/PDF/websitenotice.pdf. 

Those with questions may call 1-888-608-7344 or email hipaa@proliancesurgeons.com

An employee's car was the target of an April 1 break-in.  A company laptop and 10 patient files were taken during the car theft.  The paper files were recovered, but the laptop also contained patient information.  Names, Social Security numbers, addresses, telephone numbers, health insurance information, names of providers, and the reasons for patients' appointments may have been included in emails stored on the laptop.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

April 26, 2013 Upstate University Hospital
Syracuse, New York
MED PORT

283 (No SSNs or financial information reported)

A portable electronic device was stolen from Upstate University Hospital on March 30 or 31.  It contained the names, hospital medical record numbers, dates of birth, and diagnosis information of patients.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

April 23, 2013 OneWest Bank
Pasadena, California
BSF HACK

Unknown

A OneWest service provider suffered an unauthorized network intrusion during the first quarter of 2011.  OneWest client names, Social Security numbers, addresses, dates of birth, phone numbers, driver's license numbers, and passport numbers may have been exposed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

April 29, 2013 Hope Hospice
New Braunfels, Texas
MED DISC

818 (No SSNs reported)

Those with questions may call CEO Debra Houser-Bruchmiller's office at 800-499-7501.

An employee used an unsecured email to send sensitive patient information.  Two separate administrative violations occurred on December 27, 2012 and on February 22, 2013. The issue was discovered on February 25.  The information was secured on February 28, 2013.  Patient names, referral sources, Hospice admission and discharge dates, the names of insurance providers, and chart numbers may have been exposed. 

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

May 2, 2013 Reputations.com
Redwood, California
BSO HACK

Unknowm

Reputation.com experienced a hack that exposed customer names, email addresses, mailing addresses, date of birth, and employment information. Additionally, some customers had their encrypted passwords stolen.  Reputation.com immediately reset all customer passwords after learning about the breach.  Customers are encouraged to change their passwords on other sites if they reused their Reputation.com password.

 
Information Source:
Media
records from this breach used in our total: 0

May 2, 2013 Spellman High Voltage Electronics Corporation
Valhalla, New York
BSR INSD

Unknown

A disgruntled employee announced his resignation and then was caught copying files from his computer to a flash drive.  Employees at Spellman began experiencing transaction and intranet disruptions after the disgruntled employee left even though his access to company servers was disabled after discovery of his suspicious activities.  The events began to occur sometime around January of 2012.  An investigation of the events led to the arrest of the former employee and federal prosecutors claim that he caused enough mayhem to cost Spellman over $90,000 by using his knowledge of Spellman's computer system and stolen passwords.  The former employee pleaded not guilty.

 
Information Source:
Media
records from this breach used in our total: 0

May 1, 2013 U.S. Department of Labor
Washington, District Of Columbia
GOV HACK

Unknown

The Department of Labor's website was found to have been infected with malware that spreads to visitors using the web browser Internet Explorer.  Microsoft had already released a patch to address the Internet Explorer vulnerability and the malware targets users who have not taken advantage of the patch.

 
Information Source:
Media
records from this breach used in our total: 0

May 1, 2013 U.S. Army Corps of Engineers' National Inventory of Dams
Washington, District Of Columbia
GOV HACK

Unknown

Users of the National Inventory of Dams received notification that their information was reset after a hack may have compromised usernames and passwords.  Hackers obtained non-public information of around 8,100 major dams in the United States by breaching the database.  The information included dam vulnerabilities and could be used by cyber terrorists.  

 
Information Source:
Media
records from this breach used in our total: 0

May 3, 2013 University of Rochester Medical Center
Rochester, New York
MED PORT

537 (No SSNs or financial information exposed)

The loss of an unencrypted flash drive exposed sensitive patient information.  The flash drive contained name, date of birth, weight, gender, telephone number, URMC internal medical record number, orthopaedic physician name, date of service, diagnosis, diagnostic study, procedure, and complications.  The flash drive is believed to have been destroyed after ending up in the medical center laundry. It was not found.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

May 1, 2013 Lakeshore Mental Health Institute, Middle Tennessee Mental Health Institute
Knoxville, Tennessee
MED PHYS

Unknown

Patient records were found on the floor at an abandoned hospital building named Waterside.  The woman who discovered them was a former Lakeshore employee and she alerted a local news station.  Names, Social Security information, case numbers, dates of birth, and other patient information were exposed.

UPDATE (06/27/2013): At least 20 boxes of patient records were found in an abandoned building at the Clover Bottom Campus of the Middle Tennessee Mental Health Institute.  The records dated back to the 1980's and had been reviewed to confirm which had sensitive information that needed to be destroyed.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

April 25, 2013 Child and Family Services of New Hampshire
Manchester, New Hampshire
MED PHYS

23 (No SSNs or financial information exposed)

Someone took 23 files from a secure area in the Child and Family Services of New Hampshire main office sometime between March 15 and March 18.  The breach was discovered on March 19.  The files contained client names, dates of birth, addresses, Medicaid numbers, notes from home visits, and other health information related to home visits.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

May 7, 2013 Tomren Wealth Management
San Ramon, California
BSF HACK

Unknown

A server with client information was accessed by an unauthorized outside party between February 21 and March 6, 2013.  The attack was an attempt to use the server for spam emailing.  Client names, Social Security numbers, driver's license information, and FSC broker account numbers may have been accessed.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

May 3, 2013 Schoenbar Middle School
Ketchikan, Alaska
EDU HACK

Unknown

A ring of middle school students were able to gain access to and control of more than 300 computers by phishing for teacher administrative codes.  At least 18 students were involved.  The breach happened when students used software to imitate a legitimate software update on their computers.  The students then asked teachers to enter administrative account information so that they could complete the software updates or installations.  The phony software then stored teacher credentials.  The students were then able to control 300 laptops belonging to other students by using the administrative credentials.  The school believes that servers and sensitive information were not exposed.  The breach occurred around Friday, April 26 and was discovered on Monday, April 29 when students noticed that other students appeared to be controlling student laptops remotely and reported the issue.

 
Information Source:
California Attorney General
records from this breach used in our total: 0

May 7, 2013 Raleigh Orthopaedic Clinic
Raleigh, North Carolina
MED PHYS

17,300 

Raleigh Orthopaedic Clinic contracted with a vendor in order to have information from X-ray films transferred into electronic format.  The X-ray film was actually sold by the unnamed vendor and melted harvest for silver by a recycling company in Ohio. Patient names and dates of birth were on the film.  The Clinic does not believe that personally identifiable information was on the film.

 
Information Source:
Media
records from this breach used in our total: 0

May 7, 2013 Mapco
Brentwood, Tennessee
BSR CARD

Unknown

Customers who made purchases between March 19-25, April 14-15, or April 20-21 may have had their credit or debit card information compromised.  Tennessee and six other Southern states may have been affected by the breach. It is not clear if the payment card information was taken inside the stores or outside of the stores at gas pumps.

UPDATE (06/10/2013): The accounts of consumers who used payment cards at 373 Mapco Express stores may have been affected. Two additional locations in Tennessee were affected on April 14 and 15. There are unnamed stores that may have been affected on April 20 and 21.

UPDATE (07/08/2013): Three lawsuits have been filed as a result of data stolen in three MAPCO breaches that occurred in March, April, and June.

 
Information Source:
Media
records from this breach used in our total: 0

May 8, 2013 Name.com
Denver, Colorado
BSO HACK

Unknown

Hackers accessed Name.com servers and may have obtained usernames, email addresses, passwords, and credit card account information.  Customer passwords and credit card information were encrypted.  Customers were notified of the breach and received an email asking them to reset their passwords.

 
Information Source:
Media
records from this breach used in our total: 0

May 8, 2013 Linode.com
Galloway, New Jersey
BSO HACK

Unknown

This notice appeared on Linode's website on April 16, 2013: https://blog.linode.com/2013/04/16/security-incident-update/

Those with questions may email support@linode.com.

Hackers exploited an Adobe vulnerability and used it to access Linode Manager web servers.  One of Linode's web servers, parts of their source code, and their database were accessed.  No other components of the Linode infrastructure were accessed by the hackers.  Encrypted customer credit card numbers and passwords were obtained.  The group HTP claimed responsibility for the hack. 

 
Information Source:
Media
records from this breach used in our total: 0

May 8, 2013 Department of Family and Support Services (DFSS)
Chicago, Illinois
GOV STAT

Unknown

Nearly $41,000 in computer equipment was reported stolen from the Department of Family Support Services on May 7.  The Division on Domestic Violence and a satellite senior center share the building where the theft occurred.  The types of information that may have been on the device or devices were not reported.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 0

Breach Total
929,676,448 RECORDS BREACHED
(Please see explanation about this total.)
from 4,420 DATA BREACHES made public since 2005
Showing 3901-3950 of 4420 results


X

Sign In!

Loading