Department of Veterans Affairs

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
August 3, 2011
geo: 
Washington , DC
United States
Records Breached: 

Unknown

The inspector general at the VA found that IT contractors had accessed the VA's electronic health record system without appropriate security clearances.  An tipster had left a message about the situation on a departmental hotline in the summer of 2010.  Contractor personnel were found to be improperly sharing user accounts when accessing VA networks and the Veterans Health Information System and Technology Architecture systems. Employees of the contracting company were unaware of proper IT security protocol.

Source: 
PHIPrivacy.net

Massachusetts Executive Office of Labor and Workforce Development (EOLWD)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
May 17, 2011
geo: 
Harrisburg , PA
United States
Extra Info: 

A hotline has been set up at 1-877-232-6200.

Records Breached: 

210,000

A computer virus called W32.QAKBOT infected various computer terminals and individual computers at the Department of Unemployment Assistance, the Department of Career Services, and multiple One Stop Career Centers. The virus first infected the computers and network on April 20.  Though the virus was detected within a short period of time and stopped, it was later discovered that it had not been completely eradicated.  Names, Social Security numbers, email addresses, residential or business addresses, Employer Identification Numbers (EIN) and employer bank information may have been exposed.

Source: 
Databreaches.net

Newington Police Department

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 6, 2011
geo: 
Santa Maria , CA
United States
Records Breached: 

Unknown

A marked cruiser was left at an autodealership for service.  Its on-board camera was damaged and a laptop used for duty was stolen.  The vehicle was left outside after hours because the dealership manager expecteda police officer to pick the vehicle up after hours.

Source: 
Databreaches.net

U.S. District Court for the Middle District of Alabama

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 22, 2011
geo: 
Montgomery , AL
United States
Records Breached: 

40 (No SSNs or financial information exposed)

U.S. District Court personnel mistakenly believed that sealed records could be made available on a system called PACER.  PACER is a web-based records system.  Nearly a million defense lawyers, prosecutors, journalists, private investigators, government officials and researchers who use PACER could have accessed about 40 sealed records for as long as nine months.  The records were sealed court applications filed by 10 separate federal prosecutors in Alabama.

Source: 
Databreaches.net

Urban Institute, Internal Revenue Service

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 13, 2011
geo: 
Washington , DC
United States
Records Breached: 

2,300

About 2,300 operating and defunct, small non-profits were victims of identity fraud.  The affected non-profits are all falsely linked to a William Alexander and are mostly religious in orientation.  

Source: 
Databreaches.net

Social Security Administration (SSA)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 14, 2011
geo: 
Baltimore , MD
United States
Records Breached: 

63,587

The Social Security numbers of living people were made available on the Social Security Administration's Death Master File.  This happened twice.  Between July of 2006 and January 0f 2009 26,930 people had their Social Security numbers and other identifying information exposed. A warning from the SSA's Office of the Inspector General about privacy risks associated with the report was not enough to prevent the second incident. Between May 2007 and April of 2010 36,657 people had their full names, Social Security numbers, dates of birth, and last known ZIP code exposed.

Source: 
Databreaches.net

Oklahoma State Department of Health

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
April 12, 2011
geo: 
Oklahoma City , OK
United States
Extra Info: 

People who might have been affected may call 1-888-278-7134 or email contactosdh@health.ok.gov.

Records Breached: 

133,000

An agency laptop and 50 pages of medical information were stolen from an employee's car on April 6. A database with information from the Oklahoma Birth Defects Registry was on the laptop. Data from hospital medical records were recorded on the laptop. The Oklahoma Birth Defects Registry uses the information to track and reduce the prevalence of birth defects. Notifications of the breach state that parent and child names, Social Security numbers, addresses, birth dates, medical records and medical test results may have been exposed.

Source: 
PHIPrivacy.net

Texas Comptroller's Office

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
April 11, 2011
geo: 
Austin , TX
United States
Extra Info: 

The data came from the Teacher Retirement Center of Texas, the Texas Workforce Commission and the Employees Retirement System of Texas.

Those who have questions about the breach may call 1-855-474-2065.

Records Breached: 

3.5 million

The information from three Texas agencies was discovered to be accessible on a public server. Sometime between January and May of 2010, data that was not encrypted was transferred from the Teacher Retirement Center of Texas, the Texas Workforce Commission (TWC) and the Employees Retirement System of Texas. It ended up on a state-controlled public server as early as April 2010 and was not discovered until March 31, 2011.

Source: 
Databreaches.net

Town of Barton

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 7, 2011
geo: 
Barton , VT
United States
Records Breached: 

150

Spyware was discovered on a computer used at the town offices.  A payroll program was affected. It is not clear if Social Security numbers and other personal information were accessed.  About 150 people may have had their personal information exposed.  Current and former town employees were notified about the breach via mail.

Source: 
Databreaches.net

Oregon Department of Motor Vehicles

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 14, 2011
geo: 
Indianapolis , IN
United States
Records Breached: 

Unknown

The Oregon DMV sold DMV database information to marketing companies prior to the late 1990s.  A man gained access to this information and used it to create fake Oregon identification cards and print fake checks.  He was charged with 26 counts of aggravated identity; this represents one count per victim for each letter of the alphabet.  The databases includes 1.6 million names, addresses, dates of birth, genders and ages of people who registered with the DMV.  The database of publicly available information is over a decade old.

Source: 
Databreaches.net

Pages

Showing 1-10 of 702 results
Subscribe to GOV