Chronology of Data Breaches
Security Breaches 2005 - Present

Posted Date: April 20, 2005
Updated Date: December 31, 2013

Is this your first visit to our Chronology of Data Breaches?

  • Read our FAQ about what we define as a breached record, how we calculate the "total" records breached, our data sources, state breach notice laws, studies and other resources

  • Learn how to use our Chronology and take advantage of its sophisticated search and sort features

  • Get our RSS Feed to see when we add new breaches to the list

What would you like to do?

Chronology of Data Breaches

Custom Sort
Select your desired results. Then click "Go!"

Click or unclick the boxes then select go.


Select features, then click GO.



Help Guide

Can't find the sort feature you're looking for? Click here to download a CSV file of the data breach list as it exisits today.
Breach Total
815,842,526 RECORDS BREACHED
(Please see explanation about this total.)
from 4,488 DATA BREACHES made public since 2005

Save or Print PDF of Entire Breach List including introduction.Save or Print a PDF of Entire Breach List (including introductory FAQ)

Filter breach list before saving or printing PDF. Conduct a search of the Chronology using its sorting features, and Save or Print a PDF of your search results (Select filters)

If you do not have access to PDF, you can print the Chronology in landscape view.

Date Made Public Name Entity Type
June 19, 2013 City of Houston, Automatic Data Processing
Houston, Texas
GOV DISC

6,300

A software code error caused W-2 information to be exposed.  Approximately 1,300 classified Houston Police Department employees and 5,000 other local government workers were affected.  Names and Social Security numbers were exposed.

 
Information Source:
Media
records from this breach used in our total: 6,300

December 16, 2013 Tennessee Department of Treasury
Nashville, Tennessee
GOV INSD

6,300

An employee downloaded the information of 6,300 Nashville teachers in order to work from a personal computer and account at home.  A Tennessee Consolidated Retirement System file that contained teacher names, Social Security numbers, and dates of birth was uploaded by the employee around the time that he resigned from his position.  His personal computer and other electronic devices were seized by investigators.

 
Information Source:
Media
records from this breach used in our total: 6,300

May 28, 2010 Aetna
South Windsor, Connecticut
BSO PHYS

6,372

The number of clients from New Jersey and Pennsylvania affected totals 6,372.

A cabinet full of documents with sensitive information was found sitting on the side of the road. A woman made the discovery about a month ago and gave the documents to investigators with Aetna Insurance Co. The woman said she saw a bureau on the side of the road in front of Admiral Storage in South Windsor with a sign that said "free." She brought it home and discovered the documents. There were eight bags of nothing but Social Security numbers, names, and death benefits. Information also included patient records and medications. Aetna responded by saying, "Aetna is committed to protecting the privacy of our members and we take this situation seriously. We have policies for properly safeguarding our members’ information, and we are investigating how this incident occurred, but it appears to be human error. The woman contacted us via e-mail on the evening of May 5, and we immediately responded the next morning. She has consistently declined to give us her name or phone number, or to make arrangements to allow us to retrieve the documents at a place convenient for her, or to return them to us. As of today, we now have the files, and will go through each of them to determine the contents and whether any member information has been breached. If it has been, we will notify those members and take steps to mitigate any potential harm."

The woman attempted to arrange the hand-off, however, a short time after she got off the phone with the company, three men from Aetna showed up at her workplace, unannounced, and asked for the documents immediately. The woman said, "But when they sent the three guys to my work yesterday, it was an intimidation tactic and I didn't appreciate it. So that told me what I was going to do. That they were going to try and hide it."

Aetna said someone from the company made a "serious human error," and it will now go through the files to make sure no sensitive information was lost. What's more troubling, the woman said, is that the bureau wasn't the only piece of furniture offered for free that day. "Out of the pieces that were up for grabs, whose to say that I've got the only piece that was full of Aetna papers." The woman has also contacted the state to investigate the situation. Aetna has clients across the country.

UPDATE (8/2/10): Aetna notified 7,250 clients of the breach and reported that 6,372 were affected.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,372

November 25, 2009 Aurora St. Luke's Medical Center
Milwaukee, Wisconsin
MED PORT

6,400

6,400 people who were in-patients at St. Luke's are being warned that their name, Social Security number and other information may have landed in the hands of thieves, due to a stolen laptop computer. All of the at-risk individuals were cared for there at some point by a hospitalist, a physician other than the patient's primary care doctor, who works for an independent physician group called Cogent Healthcare. The computer was stolen from a locked office in a secure physician office building that is located adjacent to the hospital; the computer belonged to an employee of Cogent Healthcare of Wisconsin.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,400

January 7, 2008 Franklin University
Columbus, Ohio
EDU DISC

6,440

A file with student and alumni information was accidentally placed on a publicly accessible web server. The information included names, Social Security numbers, term and class information, email addresses and Franklin University ID numbers.  The file was removed from the web server.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,440

April 13, 2008 University of Toledo
Toledo, Ohio
EDU DISC

6,488

Personal information of the University of Toledo employees, the majority having worked on the Health Science Campus in 1993 and 1999 - last month was inadvertently placed on a server to which all employees had access. The information, which was used for payroll purposes, included names, addresses, and Social Security numbers and was accessible for about 24 hours.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,488

June 22, 2006 University of Kentucky
Lexington, Kentucky
EDU PORT

6,500

The personal data of current and former students including classroom rosters names, grades and Social Security numbers was reported stolen on May 26 following the theft of a professor's flash drive.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,500

July 25, 2006 Old Mutual Capital Inc., subsidiary of United Kingdom-based financial services firm Old Mutual PLC
Kansas City, Missouri
BSF PORT

6,500 fund shareholders

Laptop was stolen sometime in May containing personal information of U.S. clients, including names, addresses, account numbers and some SSNs.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,500

December 13, 2013 University of North Carolina - Chapel Hill
Chapel Hill, North Carolina
EDU DISC

6,500

Electronic files that contained names, Social Security numbers, tax identification numbers, addresses, and dates of birth were discovered online on November 11.  The information was taken down on November 23 and appears to have accidentally ended up online after maintenance work on a University computer disabled a privacy feature during the summer.

UPDATE (12/17/2013): Over 6,500 individuals were affected.  The breach affected current and former staff as well as fewer than 200 students.  The data affected may date back as far as 1999.

 
Information Source:
Media
records from this breach used in our total: 6,500

June 20, 2013 Comfort Dental
Indianapolis, Indiana
MED PHYS

6,500

Nearly 7,000 patient records were found in a publicly accessible dumpster.  A local news team investigated the breach and found the names, Social Security numbers, addresses, phone numbers, dates of birth, X-rays, dental information, credit card numbers, medical histories, and other sensitive information of Comfort Dental patients.  Comfort Dental patients who were seen at offices in Marion, Indiana and Kokomo, Indiana may have been affected.  The news team reported the issue around March 18, 2013 and removed the records.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 6,500

May 23, 2007 Mountain Xpress (Greenline Media Inc.)
Asheville, North Carolina
BSO HACK

6,540

Someone launched a dictionary attack on the email server. The hacker obtained a user name and password that allowed access to an internal database that stored credit card numbers.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,540

March 12, 2008 Harvard University
Cambridge, Massachusetts
EDU HACK

6,600

Harvard Graduate School of Arts and Sciences (GSAS) Web server may have compromised 10,000 sets of personal information from applicants and students, including 6,600 Social Security numbers and 500 Harvard ID numbers.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,600

September 19, 2005 Children's Health Council
San Jose, California
NGO PORT

5,000 - 6,700

A tape containing sensitive information was stolen from a Children's Health Council office. The tape contained names, Social Security numbers, and detailed medical information for around 6,000 current and former clients.  Payroll information for 700 current and former employees was also on the tape.  The agency alerted those who may be at risk of identity theft.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,700

May 10, 2013 PHH Corporation
Suwanee, Georgia
MED INSD

6,700 

A former employee was indicted on charges related to misuse of applicant and employee personal information.  Employee names, Social Security numbers, dates of birth, telephone numbers, email addresses, addresses, I-9 alien registration numbers, and other personal information may have been exposed.  The issue was discovered on April 3.  

 
Information Source:
California Attorney General
records from this breach used in our total: 6,700

April 12, 2012 Rhinebeck Health Center, Center for Progressive Medicine
Rhinebeck, New York
MED HACK

6,745

Rhinebeck created a page with information about the breach here: http://www.rhinebeckhealth.com/breach.html

On February 15, 2012, Rhinebeck learned that their unnamed computer vendor experienced a computer security breach.  An unauthorized party or parties may have accessed any patient information between November 15, 2011 and December 14, 2011 that was on the Rhinebeck and Center for Progressive Medicine computer network.  Patient full names, Social Security numbers, dates of birth, home addresses, phone numbers, account information, health insurance information, credit card information, laboratory tests, and diagnosis information may have been exposed. Anyone who visited either center between January 1, 2002 and December 22, 2011 may have been affected.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,745

February 9, 2012 St. Elizabeth's Medical Center
Boston, Massachusetts
MED PHYS

6,831

St. Elizabeth's Medical Center became aware of sensitive paperwork that was found exposed miles away from the medical center's Brighton campus.  St. Elizabeth's immediately sent someone to recover the documents.  It is unclear how the documents ended up in the area and a vendor may have been the source of the breach.  The types of information exposed were not revealed.

UPDATE (4/09/12): The total number of patients who were notified is 6,831.  The documents contained billing information such as patient names, hospital account numbers, credit card numbers and security codes.  The breach was discovered when someone saw the credit card payment receipts of at least five patients flying through a field.  There is no evidence that more than five patients were affected, however, it is unclear how those receipts escaped destruction.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 6,831

October 2, 2006 Port of Seattle, Seattle-Tacoma Airport (Sea-Tac)
Seattle, Washington
GOV PORT

6,939 current and former Seattle-Tacoma International Airport employees

http://www.portseattle.org, (888) 902-PORT

Six CDs missing from the ID Badging office at Seattle-Tacoma International Airport hold the personal information of 6,939 airport workers. The data include names, addresses, birth dates, SSNs and driver's license numbers, telephone numbers, employer information, and height/weight. The data on the disks were scanned from paper applications for airport badges. The port learned of the missing disks on September 18 and sent letters to the affected employees on Oct. 2.

 
Information Source:
Dataloss DB
records from this breach used in our total: 6,939

April 6, 2005 University of California, San Francisco (UCSF)
San Francisco, California
EDU HACK

7,000

A server in the accounting and personnel departments was hacked. It contained information on 7,000 students, faculty, and staff members. The affected individuals were notified March 23.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

October 18, 2007 University of Cincinnati
Cincinnati, Ohio
EDU PORT

7,000

The personal information of thousands of University of Cincinnati students and graduates has been stolen. A flash drive was taken from a UC employee last month. It contained the Social Security numbers and other data for more than 7,000 people.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

December 10, 2007 Iowa Department of Natural Resources
Des Moines, Iowa
GOV PORT

7,000

A contractor working for the DNR revealed that a computer jump drive containing the names and Social Security numbers for 7000 people is missing. The contractor believes the jump drive fell off of his desk and into a garbage can.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

April 4, 2008 University of California, Irvine
Irvine, California
EDU UNKN

7,000

7,000 current or former graduate students could be at risk of identity thieves who already used stolen data to file fake tax returns for 93 students. UCI does not know how the information was stolen or who is using it.

UPDATE (10/22/10): A class action lawsuit against United Healthcare Services was settled. UCI graduate students were affected by a fraudulent tax return scheme after an employee of United Healthcare Services misused their information to file fraudulent tax returns.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

April 16, 2008 University of Virginia
Charlottesville, Virginia
EDU PORT

7,000

A laptop stolen from a University of Virginia employee contained sensitive information about students, staff and faculty members. Stolen from an unidentified employee from an undisclosed location in Albemarle County, the laptop contained a confidential file filled with names and Social Security numbers.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

June 9, 2008 University of South Carolina
Columbia, South Carolina
EDU STAT

7,000

Several items were stolen from an office in the Moore School of Business. Among the items was a desktop computer. As a result of the computer being stolen, it is possible that some personally identifiable data could have been compromised.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

August 20, 2010 Cook County Health and Hospital Systems (CCHHS)
Chicago, Illinois
GOV PORT

7,000

On June 1, a laptop with patient information was stolen from a locked office in an administration building. The password protected-computer included names, dates of birth and Social Security numbers.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 7,000

September 7, 2010 City University of New York
New York, New York
EDU PORT

7,000

Those with questions may call (212) 650-5426.

A computer with student information was stolen. The information included Social Security numbers and names.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

February 15, 2006 Suffolk County Clerk's Office
Long Island, New York
GOV DISC

7,000

Between 7,000 and 8,000 homeowners had their Social Security numbers accidentally posted online. After realizing the mistake, County officials realized that they could not remove the information. People who pay to access the County's public records online will be able to see the Social Security numbers associated with people and addresses in the system that date back to 2001. The county could not alter public records in any way, but a new program will be implemented to block the Social Security numbers from newly recorded documents.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,000

May 22, 2014 Alabama Department of Public Health
Montgomery, Alabama
GOV INSD

7,000

The Alabama Department of Public Health notified individuals of a breach when the U.S Attorney's Office for the Middle District of Alabama and the U.S. Department of Justice's Tax Division informed the health department that they were prosecuting individuals in an id theft ring involving personal information used to file fraudulent tax returns.

"The indictment indicates that the women ran a large-scale ID theft ring between January 2011 and December 2013 during which time they filed more than 7,000 false tax returns that claimed more than $20 million.

Authorities say the woman stole identities from numerous places. Tracy Mitchell, for example, worked at the hospital at Fort Benning, Georgia, where she had access to military personnel data, including that of soldiers deployed to Iraq and Afghanistan.

Authorities also claim that Tracy Mitchell and her co-indicted daughter, Latasha Mitchell, obtained stolen identities from an Alabama state agency, that Keisha Lanier obtained stolen identities from the Alabama Department of Corrections, that Talarious Paige and Patrice Taylor worked in a call center for a Columbus, Georgia company and stole identities and that Paige, in turn, sold those identities and they were used by Tracy Mitchell, Keisha Lanier, and others to file false tax returns".

 
Information Source:
Media
records from this breach used in our total: 7,000

November 9, 2011 ValueOptions, National Elevator Industry
Newtown Square, Pennsylvania
BSO PORT

7,019

On July 6, 2011, four tape cartridges with sensitive information were shipped in a container from VOI.  The container was placed into a cardboard shipping box and shipped.  ValueOptions Inc. (VOI) was informed that the package had not arrive as of August 1. An outside agency investigated the loss of the packages until September 22.  Notification that the tapes had been lost was sent on November 4.  The tapes contained names, addresses, phone numbers, dates of birth, Social Security numbers, and plan subscriber ID numbers. VOI processes the benefits information for National elevator Industry's Health Benefit Plan, as well as other organizations.  A total of 350 New Hampshire residents were affected by the breach and 6,669 New York residents were affected as well.  The total number of people affected from different organizations and across the United States was not reported.

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,019

August 30, 2005 Stark State College of Technology
North Canton, Ohio
EDU DISC

7,058

Students attempting to access their grades, financial aid information and academic standing were able to view the information of other students. Social Security numbers, GPA, and course enrollment were viewable. A glitch is believed to be the source of the problem.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,058

August 3, 2012 The Surgeons of Lake County, LLC
Libertyville, Illinois
MED HACK

7,067

A hacker or hackers accessed and encrypted the computer server of The Surgeons of Lake County.  The incident occurred between June 22 and June 25 and was an attempt to force payment from The Surgeons of Lake County in exchange for the password needed to regain access to the server.  The unauthorized user or users had access to names, Social Security numbers, addresses, credit card numbers, and medical information.  

 
Information Source:
HHS via PHIPrivacy.net
records from this breach used in our total: 7,067

August 16, 2011 Purdue University
West Lafayette, Indiana
EDU HACK

7,093 

An unauthorized person broke into Purdue's computer system on April 5, 2010, and tried to use the server to attack other servers.  Purdue staff learned of the breach three days latter and began an assessment. The server was taken offline and staff later determined that Social Security numbers belonging to current and former students who took mathematics courses and a limited number of faculty, faculty family members and contractors were exposed.  The Social Security numbers were then matched to their owners and notification was sent to the Attorney General's office in June of 2011.  

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,093

March 18, 2010 Vanderbilt University
Nashville, Tennessee
EDU STAT 7,174
A professor's desktop computer, containing the names and Social Security numbers of 7,174 current and former students was stolen some time during the weekend of Feb. 6.  
Information Source:
Dataloss DB
records from this breach used in our total: 7,174

May 12, 2007 Goshen College
Goshen, Indiana
EDU HACK

7,300

http://www.goshen.edu/news/pressarchive/05-11-07-security.html, info@goshen.edu, (866) 877-3055  

A hacker accessed a college computer that contained the names, addresses, birth dates, Social Security numbers and phone numbers of students and information on some parents with the suspected motivation of using the system to send spam e-mails.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,300

May 9, 2013 Lutheran Social Services of South Central Pennsylvania
York, Pennsylvania
MED HACK

7,300

Lutheran Social Services became aware of a malware program that was on its software system.  Resident names, Social Security numbers, dates of birth, Medicare numbers, medical diagnosis codes, payer names, and health insurance numbers may have been exposed.  The breach was discovered in March and Lutheran Social Services had not involved investigators or police as of May 9.

 
Information Source:
Media
records from this breach used in our total: 7,300

April 5, 2013 William Jennings Bryan Dorn VA Medical Center
Columbia, South Carolina
MED PORT

7,405

The February 11 theft of an unencrypted laptop from the respiratory department resulted in the exposure of patient information.  Veterans who were patients may have had their name, Social Security number, age, race, weight, and medical test results on the laptop.  The laptop was taken during regular clinic hours.

UPDATE (05/01/2013): A lawsuit has been filed by two veterans on behalf of people who were affected by the breach.

UPDATE (07/22/2013): The Dorn VA has motioned to dismiss the case.  On July 16 the Dorn VA said that it has not been proven that the records were improperly disclosed. It also argued that the plaintiffs never asserted that the records had been shown to another or unauthorized person.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 7,405

June 1, 2007 JAX Federal Credit Union
Jacksonville, Florida
BSF DISC

7,500

Auto loan mailing list information that was being transmitted to a printer was picked up by Google through the printer's website. Social Security numbers and account numbers were exposed. The information was supposed to be encrypted.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,500

July 16, 2011 DeKalb Medical - Hillandale
Hillandale, Georgia
MED UNKN

7,500

Patients may call 855-294-2545 or visit www.dekalbmedical.org for more information.

Patient information was stolen from the Hillandale facility and used to file fraudulent tax returns with the Internal Revenue Service.  Patients who visited DeKalb's Hillandale facility between July and October 2010 may have had their information exposed.  It appears that affected individuals between the ages of 17 and 20 were the group affected by the filing of fraudulent tax returns.  The United States Secret Service alerted DeKalb and it is believed that the breach was just one of many similar breaches in Georgia and Alabama.  DeKalb did not reveal how the information was taken.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 7,500

June 18, 2010 University of Nevada
Reno, Nevada
EDU STAT

7,526

Some patient information from the University Health System may have been accessed after the theft of computer equipment at the Reno office on June 11th. Patient names, Social Security numbers, patient account numbers, medical information, birth dates and addresses may have been viewed.

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,526

June 8, 2011 University of Mary Washington (UMW)
Fredericksburg, Virginia
EDU DISC

7,566

Students with questions may call University officials at 540-654-1265 or 540-654-2246.

A student discovered student data files on a departmental EagleNet site while searching the EagleNet portal for his own information.  A total of three students accessed the sensitive files and were interviewed.  Student names, Social Security numbers and dates of birth were accessible.  The information was accidentally placed their by a faculty or staff member and reported on May 23.

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,566

October 12, 2011 United Healthcare Inc., Futurity First Insurance Group
Minnetonka, Minnesota
MED PORT

7602

United Healthcare may also be known as "UnitedHealthcare" and United Health Group may also be known as "UnitedHealth Group."

A hard drive containing information on United Healthcare Medicare plan members was stolen from Futurity First Insurance Group.  Member names, Social Security numbers, and in some cases, birth dates and private health information were exposed.  Futurity First, United Healthcare's sales and marketing services provider, sent the hard drive to a vendor for repair.  The hard drive was stolen from the vendor on or around June 28 July 28 and reported stolen on August 12.  Futurity First then told United Healthcare on September 14. 

UPDATE (10/30/2011): Three additional organizations were affected by the breach.  A total of 705 members from Mutual of Omaha Insurance Company, 1,631 United of Omaha Life Insurance Company enrollees, and 3,994 United Health Group Health Plan in Minnesota enrollees were also affected in addition to the 582 originally reported.  Information from the Health and Human Services website also reveals that the hard drive was lost on July 28.

UPDATE (11/4/2011): A total of 690 American Continental Insurance Company members from Tennessee were also affected by the breach.

 
Information Source:
PHIPrivacy.net
records from this breach used in our total: 7,602

November 25, 2006 Family Health Center of Clark County
Jeffersonville, Indiana
MED STAT

7,700

Two computers stolen from an Indiana state health department contractor, the Family Health Center of Clark Count, contained the names, addresses, birth dates, SSNs and medical and billing information for more than 7,500 women. The data were collected as part of the state's Breast and Cervical Cancer Program.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,700

August 8, 2012 University of Arizona (UA)
Tucson, Arizona
EDU DISC

7,700

Those with questions may call UA's incident contact line at 520-621-4746

A UA student ran a Google search and found her private information posted publicly.  The data belonged to several thousand people who had submitted their names and tax ID numbers to UA in order to receive payments or reimbursements.  Vendors, consultants, guest speakers, and UA students had their names and tax ID numbers exposed in February and early March.  Some people had their Social Security numbers exposed in lieu of tax ID numbers. The sensitive data was embedded within a larger set of files being transferred to the UA new financial system.  The files were thought to only contain public information.

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,700

August 8, 2013 US Airways Group
Tempe, Arizona
BSO HACK

7,700

US Airways customers with Divident Miles accounts may have had their information compromised.  Dates of birth, security question answers, last four digits of credit card numbers, and frequent-flier miles may have been accessed and compromised.

UPDATE (08/02/2013): Names, email addresses, and Known Traveler numbers were exposed.  in some cases mileage was stolen from the accessed accounts.

 
Information Source:
Media
records from this breach used in our total: 7,700

June 1, 2007 Jax Federal Credit Union
Jacksonville, Florida
BSF DISC

7,766

Social Security numbers and account numbers of clients were accidentally posted on the Internet, then indexed by Google. JFCU was transmitting information to a printer for a preapproved auto loan mailing when the information was picked up by Google from the printer's Web site. JFCU normally transmits information on an encrypted disk delivered by courier, but when the printer couldn't open the disk, the information was sent again, but wasn't encrypted and included Social Security numbers and account numbers.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,766

December 1, 2005 University of San Diego
San Diego, California
EDU HACK

7,800

Hackers gained access to computers containing personal income tax data, including Social Security numbers, names, and addresses.  Faculty members, students and vendors had their information compromised and were notified by the University.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,800

February 19, 2007 Seton Healthcare Network
North Austin, Texas
MED PORT

7,800

A laptop with uninsured patients' names, birth dates and Social Security numbers was stolen last week from the Seton hospital system. The uninsured patients had gone to Seton emergency rooms and city health clinics since July 1, 2005.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,800

December 21, 2006 New York City Human Resources Administration
Brooklyn, New York
GOV PORT

7,800

Information from the Office of Temporary and Disability Assistance and the New York State Department of Health was exposed.

A hard drive with human resources information was discovered to be missing. The hard drive may have had temporary and disability assistance applicant reports with names, Social Security numbers and dates of birth.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,800

August 2, 2012 Environmental Protection Agency
Washington, District Of Columbia
GOV HACK

7,800

A computer security breach resulted in the exposure of Social Security numbers, bank routing numbers, and home addresses.  A total of 5,100 current employees and 2,700 other individuals had their information exposed by the unspecified computer breach that occurred in March. Notification was sent around the end of July.

UPDATE (10/28/2013): An England national was charged in New Jersey with one count of accessing a U.S. department or agency computer without authorization and one count of conspiring to access a U.S. department or agency computer without authorization.  He is being investigated for illegally accessing U.S. government computer systems associated with the U.S. Army, U.S. Missile Defense Agency, Environmetnal Protection Agency, and National Aeronautics and Space Administration.

 
Information Source:
Databreaches.net
records from this breach used in our total: 7,800

April 6, 2009 City of Culpeper
Culpepper, Virginia
GOV DISC

7,845

Personal information for 7,845 town taxpayers was exposed on the Internet due to a vendor's mistake. The unidentified vendor had the records to reformat the town's personal property tax file for billing purposes. The files containing the names, addresses and Social Security numbers of residents were on a password-protected site that was compromised.

 
Information Source:
Dataloss DB
records from this breach used in our total: 7,845

May 18, 2005 Jackson Community College
Jackson, Michigan
EDU HACK

8,000

A hacker may have downloaded the passwords and Social Security numbers of employees and students.  The College sent new, high security passwords to students and employees.

 
Information Source:
Dataloss DB
records from this breach used in our total: 8,000

Breach Total
815,842,526 RECORDS BREACHED
(Please see explanation about this total.)
from 4,488 DATA BREACHES made public since 2005
Showing 3651-3700 of 4488 results


X

Sign In!

Loading