McDonald's

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 18, 2011
geo: 
Savannah , GA
United States
Records Breached: 

Unknown

A restaurant manager was found to have sold the identities of U.S. citizens to illegal aliens employed at multiple McDonald's restaurants.  The employee was sentenced in U.S. District Court to 32 months in federal prison for her role in the identity theft scheme.  Fourteen arrests were made and five suspects face federal identity theft charges.  The rest were charged with immigration violations.  It is unclear how many people were involved in the identity theft scheme. Other Mcdonald's managers also stole and sold the identities of U.S. citizens.

Source: 
Databreaches.net

Smith and Wollensky, Capital Grille, Wolfgang's Steakhouse, JoJo, Morton's, The Bicycle Club

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
November 18, 2011
geo: 
New York , NY
United States
Extra Info: 

Morton's is located in Stamford, Connecticut.  The Bicycle Club is located in Englewood Cliffs,New Jersey.

Records Breached: 

50

An identity theft ring that targeted wealthy customers of steakhouses was uncovered.  At least 28 current and former waiters and associates were arrested.  Waiters used credit card skimmers to steal the credit card information of customers who paid with American Express Black cards and other high-limit credit cards.  The crimes occurred between April 2010 and November 2011.  At least 50 victims have been identified.

Source: 
Databreaches.net

McDonald's

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 16, 2011
geo: 
Oak Park , MI
United States
Records Breached: 

100

A supervisor noticed a drive-thru cashier using a skimming device.  The dishonest employee admitted to stealing the information from more than 100 customer cards, and stealing between 15 and 20 accounts during each drive-thru shift.  Another person provided the skimming device and paid the employee $15 per credit account.

Source: 
Databreaches.net

Restaurant Depot, Jetro Cash & Carry

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
December 16, 2011
geo: 
College Point , NY
United States
Extra Info: 

The location listed is that of Restaurant Depot's corporate location.

Records Breached: 

300,000

People who shopped at Jetro or Restaurant Depot between September 21 and November 18 may have had their credit or debit card information taken by a hacker.  Customer names, card numbers, expiration dates, and verification codes were exposed.  The breach investigation began on November 9 when the parent company became aware of customers experiencing card fraud.

Source: 
Databreaches.net

Subway

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 8, 2011
geo: 
Milford , CT
United States
Records Breached: 

80,000

Over 150 Subway franchises and at least 50 other small retailers had customer data hacked from their point-of-sale (POS) systems.  Four Romanian hackers were indicted for hacking and misusing the credit card information between 2008 and May of 2011.  Over $3 million in fraudulent charges on customer cards was obtained by scanning the internet for vulnerable POS systems and then easily breaking the passwords to these systems. Keyloggers and a backdoor were also installed to allow further access to the system.

Source: 
Databreaches.net

Zappos.com

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 15, 2012
geo: 
Las Vegas , NV
United States
Extra Info: 

Customers with questions about their Zappos passwords may email passwordchange@zappos.com

Records Breached: 

24 million (No financial information or SSNs reported)

Customers were informed that their customer account information on Zappos.com may have been illegally accessed by unauthorized parties.  Customer names, email addresses, billing and shipping addresses, phone numbers, final four digits of credit card numbers, and/or cryptographically scrambled passwords were linked to customer accounts and could have been obtained. The secure database that stores detailed credit card and payment information was not affected by the breach or accessed.

Source: 
Databreaches.net

Care2.com

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 30, 2011
geo: 
Redwood City , CA
United States
Records Breached: 

Unknown

On December 27, Care2 discovered that their website had been breached.  Hackers accessed member login information.  Care2 emailed new passwords once members had logged into their accounts.  Members should change the passwords of any accounts that share the password that was previously used on Care2.  Though Care2 has 17,900,617 members, a "limited number" were affected by the breach.

Source: 
Databreaches.net

RIte Aid Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 12, 2012
geo: 
Harrisburg , PA
United States
Records Breached: 

2,900 (No SSNs or financial information reported)

The misplacement of paper documents resulted in the exposure of health and/or other personal information.  The breach was discovered on October 7, 2011.

Source: 
HHS via PHIPrivacy.net

Ward's Nursery & Garden Center

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 20, 2012
geo: 
Great Barrington , MA
United States
Records Breached: 

Unknown

Customers who used debit or credit cards at Ward's Nursery and Garden Center may have had their information taken.  Dozens of people from various banks reported fraudulent activity on their cards and Ward's Nursery and Garden Center appears to be a common link.  Reports of fraudulent activity date back to December and people who visited Ward's Nursery and Garden Center are urged to check their cards for fraud until the cause of the breach is determined.

Source: 
Databreaches.net

Steam (The Valve Corporation)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 10, 2011
geo: 
Bellevue , WA
United States
Records Breached: 

35 million

The November 6 defacement of Steam forums led to an investigation that revealed hackers had accessed a Steam database with sensitive user information. The database contained user names, hashed and salted passwords, game purchases, email addresses, billing addresses, and encrypted credit card information.  Users were prompted to change their Steam forum passwords and encouraged to change their Steam account passwords.

Source: 
Databreaches.net

Pages

Showing 71-80 of 546 results
Subscribe to BSR