Medassets Inc., Saint Barnabas Health Care System, Cook County Health and Hospitals (CCHHS)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 19, 2011
geo: 
Alpharetta , GA
United States
Records Breached: 

82,265 (around 3500 SSNs involved)

An external computer hard drive was stolen from a MedAsset employee's car on June 24.  MedAsset provides administrative and business services to medical centers.  The hard drive contained the personal information of patients who were being considered for governmental benefits at six Saint Barnabas acute care hospitals and patient information from Cook County Health and Hospitals System in Chicago.  Patient names, medical center account numbers, medical record numbers, dates of birth, medical center charges, amount paid, health insurance information and discharge dates were exposed.

Source: 
HHS via PHIPrivacy.net

United States Steel and Carnegie Pension Fund, Benefits Administration Services

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 23, 2011
geo: 
New York , NY
United States
Records Breached: 

4,000

A CD with the names, Social Security numbers and dates of birth of U.S. Steel Mining retirees and dependents was lost in the mail.  Benefits Administration Services (BAS) mailed the CD in August, but it was not received.  BAS is still working with the U.S. Postal service to recover the CD.

Source: 
Databreaches.net

Allianceforbiz.com, ShoWorks, Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
August 24, 2011
geo: 
Spokane , WA
United States
Records Breached: 

20,000 (No SSNs or financial information reported)

A hacker accessed a database of sensitive customer information.  An Excel spreadsheet with usernames, passwords, email addresses, company names, and other types of personal or business information of 20,000 people was posted online on August 22. No credit cards were accessed and the website was closed until all passwords were changed.

Source: 
Databreaches.net

TRICARE Management Activity (formerly Civilian Health and Medical Program of the Uniformed Services, CHAMPUS), Science Applications International Corporation (SAIC)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
September 30, 2011
geo: 
Extra Info: 

SAIC may be contacted at (855) 366-0140 for domestic calls and (952) 556-8312 for international calls.  SAIC's website is http://www.saic.com/

Records Breached: 

5,117,799

The car theft of backup tapes resulted in the exposure of protected health information from patients of military hospitals and clinics.  Uniformed Service members, retirees and their families were affected.

Source: 
Media

Law Office of Ashley Bell, Department of Family and Children Services, Court Appointed Special Advocates (CASA)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 16, 2011
geo: 
Gainesville , FL
United States
Records Breached: 

Unknown

Sensitive client files were found in a newspaper recycling bin at The Gainesville Times.  The files were related to the physical and sexual abuse of juveniles and client Social Security and phone numbers were exposed.  The breach may have been caused by a college intern who disposed of the files inappropriately.  Some files were as recent as 2009, but all cases were closed.

Source: 
PHIPrivacy.net

United Airlines

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 30, 2011
geo: 
Chicago , IL
United States
Records Breached: 

20 (No SSNs or financial information reported)

A customer checking frequent flyer miles on United Airlines' mobile website was able to view the names, Mileage Plus numbers, future flight itineraries with confirmation codes, and previous trips of other Unite Airlines customers.  The information could have allowed anyone to change another passenger's seating assignment or cancel a flight by using confirmation codes and last names.  

Source: 
Databreaches.net

Automatic Data Processing (ADP), A.W. Hastings'

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 28, 2011
geo: 
Westlake Village , CA
United States
Records Breached: 

Unknown

On November 12, 2011, an encrypted laptop was stolen from the home of an ADP associate.  The laptop was encrypted and password-protected.  It contained files with the personal information of A.W. Hastings & Co. employees which had been given to ADP for payroll processing.  Names, Social Security numbers, and addresses may have been exposed.

Source: 
Databreaches.net

Aegis Science Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 28, 2011
geo: 
Atlanta , GA
United States
Records Breached: 

2,184 (No SSNs or financial information reported)

A laptop and external hard drive containing patient information were stolen from a locked vehicle owned by an Aegis employee on November 22, 2011.  The external hard drive contained names and Social Security numbers. It may have also contained driver's license numbers, dates of birth, and phone numbers.  Though Aegis provides lab tests, results and medical records were not exposed.  

Source: 
Databreaches.net

Employ Bridge (Staffing Solutions), Tempo Real Estate Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 9, 2012
geo: 
Atlanta , GA
United States
Records Breached: 

Unknown

Thousands of personal documents were found in a recycling dumpster.  The documents likely contained employment information such as full names, addresses, phone numbers, email addresses, and work histories. They were taken from an office in Alpharetta without the company's knowledge or permission.  A landlord with Temp Real Estate Corporation sent a cleaning crew to clean out the office after incorrectly believing Employ Bridge's lease had expired. 

Source: 
Media

Solitude Mountain Resort

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 14, 2012
geo: 
Salt Lake City , UT
United States
Records Breached: 

Unknown

Hackers stole credit card information during an attack on Solitude Mountain's credit card system.  The breach was short-lived and a small, but undisclosed number of people saw fraudulent charges on their credit cards.  Anyone who used a credit card at Solitude during the week of February 7 should check their statements for unusual activity.

Source: 
Databreaches.net

Pages

Showing 111-120 of 623 results
Subscribe to BSO