Rite Aid Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 27, 2012
geo: 
Camp Hill , PA
United States
Records Breached: 

Unknown

A customer using RiteAid's mobile app to check a prescription noticed that he was able to access the names, addresses, and prescription records of other customers.  The customer was able to identify some of the problems by using his computer science background.  He noticed there was no secure login tied to web service calls made from the smartphone application.  The customer was able to correspond with several RiteAid representatives and RiteAid began to address some of the security concerns.

Source: 
PHIPrivacy.net

China East

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 21, 2012
geo: 
Wauwatosa , WI
United States
Records Breached: 

Unknown

A dishonest employee was caught with a backpack full of customer financial information.  A resident reported the employee when he saw someone checking his mail for packages.  Police investigated and were able to uncover fraudulent activity.  At least 10 purchases were made with customer debit and credit cards between January and February.

Source: 
Dataloss DB

Sailboat Owners Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 20, 2012
geo: 
Seattle , WA
United States
Records Breached: 

2,258

Unusual activity was noticed on Sailboat Owner's web servers on the morning of February 23.  The website was immediately shut down, but sensitive information may have been accessed. Malware had been uploaded to the web server on the morning of February 22.  A total of 2,258 unencrypted credit card records were on the server and dated from 2007 until the day of the incident.  CVV codes and expiration dates were also exposed.

Source: 
Dataloss DB

BenefitsEvent, Orvis Company

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 23, 2012
geo: 
Peck Slip , NY
United States
Records Breached: 

Unknown

Orvis' hosting company notified Orvis that it may have experienced a breach.  It received reports from other clients that fraudulent charges had appeared on their customers' credit cards.  The customer credit cards had been used for hosted events. The computer database was encrypted, though it appears to have been compromised.

Source: 
Dataloss DB

Manwin Holding SARL (Brazzers)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 11, 2012
geo: 
Waltham , MA
United States
Records Breached: 

350,000 (No SSNs or financial information exposed)

A hacker or hackers were able to access user records from the inactive forum of a website run by Brazzers. A portion of the compromised emails, usernames, and encrypted passwords were posted online.

Source: 
Dataloss DB

Combined Systems

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 13, 2012
geo: 
Jamestown , PA
United States
Records Breached: 

Unknown

A hacker or hackers accessed the Combined Systems website and shut it down.  The hackers claim to have struck in honor of the anniversary of the February 14, 2011 Bahrain uprising and to have wiped out the company's web servers.  Administrator logins, customer data, and emails were posted online.

Source: 
Dataloss DB

Gossip Girl

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 13, 2012
geo: 
Providence , UT
United States
Records Breached: 

2,480 (No SSNs or financial information reported)

The official fan website for the Gossip Girl TV show was hacked and defaced. Usernames, IDs, emails, and encrypted passwords were posted online.  Another hacker followed up on the attack by decrypting many of the publicly posted password hashes.

Source: 
Dataloss DB

Drago's Seafood Restaurant

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 16, 2012
geo: 
Metairie , LA
United States
Records Breached: 

Unknown

A waiter was arrested for using a skimming device to steal customer credit card information.  The dishonest employee was linked to two men who were arrested for using the information. The men would purchase electronic equipment with the stolen credit card information and then attempt to resell it for cash.

Source: 
Dataloss DB

Yamaha Commercial Audio Systems

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 20, 2012
geo: 
Colombus , OH
United States
Records Breached: 

1,755 (No SSNs or financial information reported)

A hacker or hackers accessed and posted sensitive information from an official Yamaha music website.  A total of eight administrator accounts, as well as 1,755 email addresses and plain-text passwords were exposed.  

Source: 
Dataloss DB

Patriot Self Storage (CubeSmart Management, LLC)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 3, 2012
geo: 
Boston , MA
United States
Records Breached: 

Unknown

Files containing customer lease documents were discovered missing.  The information was several years old and included customer names and addresses.  Drivers' license numbers and Social Security numbers may have also been exposed.

Source: 
Dataloss DB

Pages

Showing 51-60 of 541 results
Subscribe to BSR