Data Breaches

Breach Subtotal

Breach Type: all
Organization Type: all
Year(s) of Breach: all
Company or Organization: all
Date Made Public:
January 29, 2019
Company: Lanier Family & Cosmetic Dentistry, P.C.
Location: , Georgia
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,950

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 28, 2019
Company: Pawnee County Memorial Hospital
Location: , Nebraska
Type of breach:
HACK
Type of organization:
MED
Records Breached:
7,038

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 26, 2019
Company: Verity Health System of California, Inc.
Location: , California
Type of breach:
HACK
Type of organization:
MED
Records Breached:
2,988

Location of breached information: Email

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
January 25, 2019
Company: Dr. DeLuca Dr. Marciano & Associates, P.C.
Location: , Connecticut
Type of breach:
HACK
Type of organization:
MED
Records Breached:
23,578

Location of breached information: Desktop Computer, Electronic Medical Record, Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 25, 2019
Company: Valley Professionals Community Health Center
Location: , Indiana
Type of breach:
HACK
Type of organization:
MED
Records Breached:
12,029

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 25, 2019
Company: HealthFitness
Location: , Illinois
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,808

Location of breached information: Other

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
January 25, 2019
Company: Sunflower State Health Plan
Location: , Kansas
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,625

Location of breached information: Other

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 24, 2019
Company: Unum Group, on behalf of its subsidiaries - Unum Life Insurance and Colonial Life & Accident Insurance
Location: , Tennessee
Type of breach:
HACK
Type of organization:
MED
Records Breached:
532

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 22, 2019
Company: Stonehaven Dental
Location: , Texas
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
6,289

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 21, 2019
Company: Critical Care, Pulmonary and Sleep Associates, PLLP
Location: , Colorado
Type of breach:
HACK
Type of organization:
MED
Records Breached:
23,377

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: Valley Hope Association
Location: , Kansas
Type of breach:
HACK
Type of organization:
MED
Records Breached:
70,799

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: FABEN Obstetrics and Gynecology, LLC
Location: , Florida
Type of breach:
HACK
Type of organization:
MED
Records Breached:
6,092

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: Integrity, Inc. d/b/a Integrity House
Location: , New Jersey
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
7,206

Location of breached information: Desktop Computer, Laptop

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: Las Colinas Orthopedic Surgery & Sports Medicine, PA
Location: , Texas
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
76,000

Location of breached information: Other Portable Electronic Device

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: ABB Inc. Active Employee Group Benefit Plan
Location: , North Carolina
Type of breach:
DISC
Type of organization:
MED
Records Breached:
6,877

Location of breached information: Paper/Films

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
January 18, 2019
Company: Tri-Cities Chaplaincy
Location: , Washington
Type of breach:
HACK
Type of organization:
MED
Records Breached:
1,086

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 16, 2019
Company: Lebanon VA Medical Center
Location: , Pennsylvania
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,002

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 15, 2019
Company: Humana Inc.
Location: , Kentucky
Type of breach:
HACK
Type of organization:
MED
Records Breached:
598

Location of breached information: Other

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 14, 2019
Company: Premier Specialties, Incorporated
Location: , Texas
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,300

Location of breached information: Paper/Films

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 10, 2019
Company: Sacred Heart Rehabilitation Center
Location: , Michigan
Type of breach:
DISC
Type of organization:
MED
Records Breached:
2,266

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 9, 2019
Company: Humana Inc
Location: , Kentucky
Type of breach:
DISC
Type of organization:
MED
Records Breached:
1,211

Location of breached information: Other

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
January 8, 2019
Company: Family Physicians of Winter Park, Inc.
Location: , Kentucky
Type of breach:
HACK
Type of organization:
MED
Records Breached:
8,429

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 7, 2019
Company: Dermacare Brickell
Location: , Florida
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
1,800

Location of breached information: Paper/Films

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 6, 2019
Company: NORTH ATLANTA MEDICAL CLINIC
Location: , Georgia
Type of breach:
HACK
Type of organization:
MED
Records Breached:
2,800

Location of breached information: Desktop Computer

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 3, 2019
Company: Managed Health Services
Location: , Indiana
Type of breach:
DISC
Type of organization:
MED
Records Breached:
576

Location of breached information: Paper/Films

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
January 3, 2019
Company: Centerstone Insurance and Financial Services (d/b/a BenefitMall)
Location: , Texas
Type of breach:
HACK
Type of organization:
MED
Records Breached:
111,589

Location of breached information: Email

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
December 31, 2018
Company: Humana Inc
Location: , Kentucky
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
684

Location of breached information: Paper/Films

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 29, 2018
Company: Choice Rehabilitation
Location: , Missouri
Type of breach:
HACK
Type of organization:
MED
Records Breached:
4,309

Location of breached information: Email, Laptop

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
December 28, 2018
Company: Wolverine Solutions Group
Location: , Michigan
Type of breach:
HACK
Type of organization:
MED
Records Breached:
48,471

Location of breached information: Desktop Computer, Network Server

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
December 27, 2018
Company: WEA Insurance Corporation
Location: , Wisconsin
Type of breach:
HACK
Type of organization:
MED
Records Breached:
850

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 21, 2018
Company: San Diego Unified School District
Location: San Diego, California
Type of breach:
HACK
Type of organization:
EDU
Records Breached:
500,000

As reported at the Los Angeles Times, "The personal information of San Diego Unified students, former students and employees may have been compromised in a data breach that officials believe happened in January, the school district said Friday.

The breach could affect as many as 500,000 students who attended San Diego Unified schools as far back as the 2008-09 school year, officials said.

The breach may have included information about students and staff such as addresses and dates of birth, discipline, health, scheduling and grade information, according to an email sent to school families on Friday. Social Security numbers were also affected.

About 50 staff members’ accounts are known to have been compromised and have been reset, according to the district.

“The San Diego Unified School District has taken the steps necessary to eliminate the threat to your personal data and implement improvements to prevent such unauthorized access from happening again,” the district said in the email."

Information Source:
Media
Date Made Public:
December 21, 2018
Company: SEIU Local 32BJ, District 36 Building Operators Welfare Trust Fund
Location: , Pennsylvania
Type of breach:
DISC
Type of organization:
MED
Records Breached:
911

Location of breached information: Email

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
December 21, 2018
Company: Kent County Community Mental Health Authority
Location: , Michigan
Type of breach:
HACK
Type of organization:
MED
Records Breached:
2,284

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 21, 2018
Company: DePaul University
Location: , Illinois
Type of breach:
DISC
Type of organization:
MED
Records Breached:
656

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 20, 2018
Company: JAND Inc. d/b/a Warby Parker
Location: , New York
Type of breach:
HACK
Type of organization:
MED
Records Breached:
177,890

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 20, 2018
Company: The Podiatric Offices of Bobby Yee
Location: , California
Type of breach:
HACK
Type of organization:
MED
Records Breached:
24,000

Location of breached information: Desktop Computer, Laptop, Other Portable Electronic Device

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 20, 2018
Company: Dermatologists of Southwest Ohio
Location: , Ohio
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
733

Location of breached information: Paper/Films

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 19, 2018
Company: Virtual Radiologic Professionals, LLC
Location: , Minnesota
Type of breach:
HACK
Type of organization:
MED
Records Breached:
2,568

Location of breached information: Other

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
December 18, 2018
Company: Tift Regional Medical Center
Location: , Georgia
Type of breach:
HACK
Type of organization:
MED
Records Breached:
1,045

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
December 18, 2018
Company: Barnes-Jewish Hospital
Location: , Missouri
Type of breach:
HACK
Type of organization:
MED
Records Breached:
1,643

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
CSV