Data Breaches

Breach Subtotal

Breach Type: all
Organization Type: all
Year(s) of Breach: all
Company or Organization:
Date Made Public:
February 19, 2018
Company: FedEx
Location: , Tennessee
Type of breach:
DISC
Type of organization:
BSR
Records Breached:
119,000

Personal information of thousands of FedEx customers worldwide was exposed on the web due to an Amazon Web Services (AWS) cloud storage server which was not secured with a password. Security researchers from Kromtech Security found the open AWS bucket which contained 119,000 scanned documents, including passports, drivers’ licenses and Applications for Delivery of Mail Through Agent forms, which contain names, home addresses, phone numbers and ZIP codes. 

 

Information Source:
Media
Date Made Public:
July 25, 2006
Company: Cablevision Systems Corp., ACS, FedEx
Location: Bethpage, New York
Type of breach:
PORT
Type of organization:
BSO
Records Breached:
13,700

A tape en route to the company's 401(k) plan record-keeper ACS was lost when shipped by FedEx to Dallas, TX. No customer data was on the tape.

Information Source:
Dataloss DB
Date Made Public:
February 4, 2006
Company: FedEx
Location: Los Angeles, California
Type of breach:
DISC
Type of organization:
BSO
Records Breached:
1,100

Eighty-five hundred W-2 forms including other workers' tax information such as Social Security numbers and salaries were sent out to employees. Fewer than 1,100 employees had their information exposed.  The company suspects that their internal processing center may have misaligned the forms and caused them to be cut in the wrong place. Workers were asked not to open their W-2s, but many had already done so before the notification. 

Information Source:
Dataloss DB
CSV