Data Breaches

Breach Subtotal

Breach Type: CARD, HACK, INSD, PHYS, PORT, STAT, DISC, UNKN
Organization Type: BSF, BSO, BSR, EDU, GOV, MED, NGO, UNKN
Year(s) of Breach: 2018
Company or Organization: all
Date Made Public:
November 2, 2018
Company: Impact assets inc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
1,216

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
November 2, 2018
Company: Transamerica retirement solutions llc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
10,636

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
November 1, 2018
Company: Dallas County Mental Health Mental Retardation Center dba Metrocare Services
Location: , Texas
Type of breach:
HACK
Type of organization:
MED
Records Breached:
1,804

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
November 1, 2018
Company: Community hospital south
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
1

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
November 1, 2018
Company: Mutualof omaha bank
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
47

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
November 1, 2018
Company: O x o
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
3,242

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 31, 2018
Company: Whole foods market group inc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
644

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 30, 2018
Company: Northbay healthcare corporation
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
1,567

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 30, 2018
Company: Reid health
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
1

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 30, 2018
Company: Residential care x i i i llcdba aster place
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
73

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 28, 2018
Company: HealthFitness
Location: , Illinois
Type of breach:
DISC
Type of organization:
MED
Records Breached:
614

Location of breached information: Other

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
October 26, 2018
Company: Raley's/Bel Air Mart/Nob Hill General Store, Inc.
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 26, 2018
Company: TengoInternet, Inc.
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 26, 2018
Company: Raley's/Bel Air Mart/Nob Hill General Store, Inc.
Location: , California
Type of breach:
PHYS
Type of organization:
MED
Records Breached:
10,124

Location of breached information: Laptop

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
October 26, 2018
Company: International societyof explosives engineers
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
133

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 26, 2018
Company: Lyric operaof chicago
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
302

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 26, 2018
Company: Star title partnersof palm harbor llc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
2,059

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Bankers Life (BL) - BL is the marketing brand of Bankers Life and Casualty Co., Medicare Supplement insurance policies sold by Colonial Penn Life Insurance Co. and select policies sold in NY by Bankers Conseco Life Insurance Company, a NY licensed ins. co
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 25, 2018
Company: Girl Scouts of Orange County
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 25, 2018
Company: STL International, Inc. d/b/a Teeter
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 25, 2018
Company: Net32, Inc.
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 25, 2018
Company: TravisMathew, LLC
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 25, 2018
Company: CNO Financial Group, Inc.
Location: , Indiana
Type of breach:
DISC
Type of organization:
MED
Records Breached:
566,217

Location of breached information: Other

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
October 25, 2018
Company: Bankers life
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
799,563

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Cendera funding inc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
5,328

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Ceres partners llc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
8

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Forethought life insurance company
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
16

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Heartland hotel corporation
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
2,011

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Net32 inc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
10,000

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 25, 2018
Company: Travis mathew, llc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
5,754

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 24, 2018
Company: ShopStyle Inc.
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
500

Information on this security breach is provided by the Office of the California Attorney General. ** Disclaimer: ** The number of breached records reported reflects our best estimate, based on all the data currently available, surrounding this breach. Because the specific number of breached records was not disclosed in the notification letter sent to the California Attorney General?s Office, the number is estimated as the minimum number of breached records necessary to trigger the obligation of notification to the Attorney General under California statute.
Under Cal. Civ. Code 1798.29, 1798.82, notification to the Attorney General is only required whenever a breach of records affects more than 500 California residents.
If you believe this number is inaccurate, please contact us at chronology@privacyrights.org

Information Source:
California Attorney General
Date Made Public:
October 24, 2018
Company: Exam one
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
2

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 24, 2018
Company: Indiana university
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
1

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 24, 2018
Company: Uber technologies inc
Location:
Type of breach:
UNKN
Type of organization:
UNKN
Records Breached:
197

Information on this security breach is provided by the Office of the Indiana Attorney General

Information Source:
Indiana Attorney General
Date Made Public:
October 24, 2018
Company: Missouri Department of Mental Health
Location: , Missouri
Type of breach:
DISC
Type of organization:
MED
Records Breached:
9,000

Location of breached information: Other

Business associate present: Yes

Information Source:
US Department of Health and Human Services
Date Made Public:
October 23, 2018
Company: The Children's Hospital of Philadelphia
Location: , Pennsylvania
Type of breach:
HACK
Type of organization:
MED
Records Breached:
5,368

Location of breached information: Email

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
October 22, 2018
Company: The Centers for Medicare and Medicaid Services -
Location: Baltimore, Maryland
Type of breach:
HACK
Type of organization:
GOV
Records Breached:
75,000

According to the press release on their website, "Earlier this week, CMS staff detected anomalous activity in the Federally Facilitated Exchanges, or FFE’s Direct Enrollment pathway for agents and brokers. The Direct Enrollment pathway, first launched in 2013, allows agents and brokers to assist consumers with applications for coverage in the FFE.

At this time, we believe that approximately 75,000 individuals’ files were accessed. While this is a small fraction of consumer records present on the FFE, any breach of our system is unacceptable."

 

Information Source:
Media
Date Made Public:
October 22, 2018
Company: Day Kimball Healthcare
Location: , Connecticut
Type of breach:
DISC
Type of organization:
MED
Records Breached:
698

Location of breached information: Electronic Medical Record

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
October 22, 2018
Company: CJ Elmwood Partners, L.P.
Location: , Iowa
Type of breach:
HACK
Type of organization:
MED
Records Breached:
22,416

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
Date Made Public:
October 22, 2018
Company: Jones Eye Center, P.C.
Location: , Iowa
Type of breach:
HACK
Type of organization:
MED
Records Breached:
39,605

Location of breached information: Network Server

Business associate present: No

Information Source:
US Department of Health and Human Services
CSV