City of Monroeville


Location

Monroeville, PA
United States
Date Breach Made Public: 
April 23, 2013
geo: 
Monroeville, PA
United States
Records Breached: 

Unknown

A number of inappropriate security practices may have exposed the information of people who called Monroeville's 911 dispatch center, police department, fire department, or EMS department in 2012 or 2013.  Monroeville is being investigated for possible violations of federal health privacy laws.  An August 2012 complaint to the U.S.

Source: 
Media

Raleigh Orthopaedic Clinic


Location

Raleigh, NC
United States
Date Breach Made Public: 
May 7, 2013
geo: 
Raleigh, NC
United States
Records Breached: 

17,300 

Raleigh Orthopaedic Clinic contracted with a vendor in order to have information from X-ray films transferred into electronic format.  The X-ray film was actually sold by the unnamed vendor and melted harvest for silver by a recycling company in Ohio. Patient names and dates of birth were on the film.  The Clinic does not believe that personally identifiable information was on the film.

Source: 
Media

Coinbase


Location

San Francisco, CA
United States
Date Breach Made Public: 
May 10, 2013
geo: 
San Francisco, CA
United States
Records Breached: 

Unknown

A flaw in Coinbase's systems cause the information of some merchants to be exposed.  Any merchant who created a "buy now" button, donate button, or hosted a payment page using Coinbase's Merchant Tools and posted a public link to it online had the page publicly visible on the internet.  The page contained the company name, website, phone number, email address, and mailing address.  Additionally, anyone could search for public Coinbase merchant payment pages and collect the email addresses of merchants.

Source: 
Media

Vendini, Inc.


Location

San Francisco, CA
United States
Date Breach Made Public: 
May 22, 2013
geo: 
San Francisco, CA
United States
Extra Info: 

Those with questions may call Vendini at 800-836-0473.

Vendini's blog statement can be read here: http://blog.vendini.com/

Records Breached: 

22,900

Anyone who used Vendini for ticket purchases may have had their financial information exposed during a March breach.  A hacker accessed Vendini's server and may have obtained customer names, addresses, email addresses, credit card numbers, and credit card expiration dates.  A total of 22,900 customers from Augusta, Maine may have been affected.  It is unclear if people from other states were also affected.

UPDATE (06/12/2013): The unauthorized intrusion was first detected on April 25.  

Source: 
Media

TJG, Inc., Target Marketing


Location

Ashland, VA
United States
Date Breach Made Public: 
May 29, 2013
geo: 
Ashland, VA
United States
Records Breached: 

Unknown

The Target Marketing website was accessed by unauthorized parties on May 14.  People who used debit or credit cards on the online e-commerce platform may have had their names, email addresses, payment card numbers, expiration dates, and CVV codes accessed.

UPDATE (05/29/2013): Shumsky in Dayton, Ohio was also affected. Shumsky customers may have had their names, addresses, email addresses, credit/debit card numbers, payment card expiration dates, and CVV codes accessed.

Source: 
California Attorney General

Yolo Federal Credit Union


Location

Woodland, CA
United States
Date Breach Made Public: 
June 17, 2013
geo: 
Woodland, CA
United States
Records Breached: 

Unknown

Yolo was notified by Visa that there may have been a breach at several merchant locations.  Yolo was not the sight of the breach, but customers were issued new payment cards.  The issue was reported to Yolo on May 31.  

Source: 
Media

Integrity Oncology, Baptist Medical Group, North Atlantic Telecom


Location

TN
United States
Date Breach Made Public: 
June 9, 2013
geo: 
TN
United States
Extra Info: 

Integrity Oncology has multiple locations in Tennessee.

Records Breached: 

539 (No SSNs or financial information reported)

Integrity Oncology's business associate North Atlantic Telecom discovered a breach incident on March 5.  

Source: 
HHS via PHIPrivacy.net

Internal Revenue Service (IRS)


Location

Washington, DC
United States
Date Breach Made Public: 
July 8, 2013
geo: 
Washington, DC
United States
Records Breached: 

10,000

Public.Resource.org received 990-T forms with sensitive information during a request for information from the IRS.  The IRS acknowledged the mistake and Public.Resource.org became curious about where else the information could be found.  Public.Resource.org found multiple incidents of Social Security numbers being exposed on the IRS website and wrote a letter that pointed out the issues to the IRS.  The IRS was able to remove some or all of the sensitive files from public view over the course of a few days.

Source: 
Media

Securities and Exchange Commission (SEC)


Location

Washington, DC
United States
Date Breach Made Public: 
July 25, 2013
geo: 
Washington, DC
United States
Records Breached: 

Unknown

A July 8 letter warned current and former employees that SEC employee data had been found on the networks of another federal agency.  The outside federal agency was not named. It appears that a former SEC employee inadvertently and unknowingly downloaded the names, Social Security numbers, and dates of birth of SEC employees onto a thumb drive and then transferred them to another agency.  The employee wanted a template of the document rather than the actual employee data that it contained.

Source: 
Media

Quayside Publishing Group


Location

Minneapolis, MN
United States
Date Breach Made Public: 
July 2, 2013
geo: 
Minneapolis, MN
United States
Extra Info: 

Qbookshop.com, Qbookshop.net, Motorbooks.com, and WalterFoster.com were affected.

Records Breached: 

Unknown

A credit card breach resulted in the exposure of information. Customers who made online purchases at Quayside Publishing Group had their information exposed sometime around April 29.  Names, addresses, and credit card numbers were exposed until June 17.

Source: 
California Attorney General
Showing 1-10 of 621 results
Syndicate content


X

Sign In!

Loading