Bit9, Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 27, 2013
geo: 
Waltham , MA
United States
Records Breached: 

Unknown

Hackers were able to exploit a vulnerability in a web application and use an SQL injection.  The breach occurred in July of 2012, however the server was shut down until January of 2013. Hackers then used Bit9's systems to attack other organizations who relied on Bit9 as a security platform vendor.  Three unnamed companies were affected.  The vulnerability was caused by Bit9 failing to install its own security software.

Source: 
Media

Evernote

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
March 3, 2013
geo: 
Redwood City , CA
United States
Extra Info: 

Evernote's breach notice can be found herehttp://evernote.com/corp/news/password_reset.php.

Records Breached: 

50,000,000 (No SSNs or financial information reported)

A hacker or hackers attacked and may have accessed Evernote's online system. Evernote reset all user passwords as a precaution.  User names, email addresses, and encrypted passwords may have been exposed. 

UPDATE (03/09/2013): A total of 50 million users were told to reset their passwords.

Source: 
Media

Facebook

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
February 15, 2013
geo: 
Menlo Park , CA
United States
Extra Info: 
Records Breached: 

Unknown

Facebook discovered that hackers had exploited a vulnerability and accessed unspecified data.  Facebook found no evidence that Facebook user data was compromised.  Malware was installed on a number of employee laptops after a small number of them visited a mobile developer website that turned out to be unsafe. Microsoft, Twitter, and Apple were affected by the same issue around the same time.

Source: 
Media

Tribune Co.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 15, 2013
geo: 
Sacramento , CA
United States
Records Breached: 

Unknown

A former employee revealed a password and username combination for Tribune Co. to hackers.  The hackers were part of anonymous and used the information to access Tribune Co.'s servers in 2010.  A number of online stories that had been published through Tribune Co. were defaced by hackers as a result.  

The former employee of a TV station owned by Tribune Co. was indicted on charges of conspiracy to cause damage to a protected computer, transmission of malicious code, and attempted transmission of malicious code.

Source: 
Media

Comfort Inn and Suites

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 22, 2013
geo: 
Willard , MO
United States
Records Breached: 

Unknown

A dishonest employee working at a Comfort Inn and Suites in Willard, Missouri during 2009 worked with a conspirator to misuse the information of hotel customers.  They were ordered to pay restitution of $23,000.  The dishonest employee was sentenced to three years of probation and her accomplice was sentenced to 42 months for aggravated identity theft and conspiracy to commit wire fraud.

Source: 
Media

Scribd

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 5, 2013
geo: 
San Francisco , CA
United States
Records Breached: 

100,000 (No SSNs or financial information exposed)

A hack affected less than 1% of Scribd's 50 million users. "A few hundred thousand" users had their passwords stolen.  Users who were affected received instructions for resetting passwords.  The passwords were encrypted and it is unlikely that hackers were able to decrypt and use the passwords before Scribd and Scribd users learned of the breach.

Source: 
Media

TLO, LLC

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 22, 2013
geo: 
Boca Raton , FL
United States
Records Breached: 

Unknown

On January 15, 2013 TLO discovered that there had been limited fraudulent access to their system.  A hacker or hackers were able to access names, Social Security numbers, and driver's license numbers between August 2012 and January 2013. 

Source: 
California Attorney General

Sourcefire

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 27, 2012
geo: 
Columbia , MD
United States
Records Breached: 

500

The November 6 theft of an unencrypted laptop may have resulted in the exposure of employee Social security numbers.  It is unclear if other types of information were also exposed.  A total of 500 employees may have been affected.  

Source: 
Media

World Travel Holdings (WTH)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
December 17, 2012
geo: 
Wilmington , MA
United States
Extra Info: 

CruiseOne and Crusies Inc. are affiliated with WTH and also mailed notifications to their customers.

Records Breached: 

Unknown

An unauthorized party accessed WTH's booking system by misusing the log-in credentials of an authorized user.  Encrypted credit card numbers and expiration dates that were stored and could be decrypted in the system were exposed.

Source: 
California Attorney General

Islamic Finder

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 17, 2012
geo: 
Anaheim , CA
United States
Records Breached: 

279 (No SSNs or financial information reported)

A hacker or hackers accessed and posted information from islamicfinder.org online.  Usernames, names, passwords, and email addresses were exposed.

Source: 
Dataloss DB

Pages

Showing 51-60 of 623 results
Subscribe to BSO