Merlin Information Services

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 28, 2005
geo: 
Kalispell , MT
United States
Montana US
Records Breached: 

5,875

An individual fraudulently obtained personal information about thousands of victims from Merlin Information Services and used that information to commit identity theft by opening up credit card accounts. He posed as a private investigator, thus giving Merlin the impression that he was a legitimate user of their services. He conducted at least 1,873 queries through the Merlin system to obtain information on approximately 5,875 people.

Source: 
Media

Time Warner, Iron Mountain Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 2, 2005
geo: 
New York , NY
United States
New York US
Records Breached: 

600,000

Backup tapes containing the personal information of current and former employees from as far back as 1986 was lost or stolen during shipping. An 800 number was set up to answer questions and provide free credit monitoring for one year.

UPDATE (5/3/2005): A contractor named Iron Mountain Inc. lost the tapes during shipping. 

Source: 
Dataloss DB

MCI

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 5, 2005
geo: 
Colorado Springs , CO
United States
Colorado US
Records Breached: 

16,500

A laptop containing names and Social Security numbers of current and former employees was stolen from the car trunk of an MCI financial analyst.  An MCI spokesperson stated that MCI would continue its policy of allowing laptops to be taken home by employees and will evaluate new security technologies.

Source: 
Dataloss DB

LexisNexis

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 10, 2005
geo: 
Dayton , OH
United States
Ohio US
Records Breached: 

310000

Unauthorized individuals used IDs and passwords of legitimate customers to obtain consumers' Social Security numbers, driver's license numbers, and names and addresses. Most of the breaches were at the company's subsidiary Seisint Inc., based in Florida.

UPDATE (4/12/05) An internal investigation at LexisNexis has uncovered evidence that an additional 280,000 records may have been involved in this breach, increasing the total from 30,000 to 310,000.

Source: 
Dataloss DB

ChoicePoint

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 15, 2005
geo: 
Alpharetta , GA
United States
Georgia US
Records Breached: 

163,000

Fraudsters who presented themselves as legitimate ChoicePoint customers purchased data profiles from ChoicePoint on individuals and used that data to commit identity theft. The initial number of affected records was estimated at 145,000 but was later revised to 163,000.

Source: 
Security Breach Letter

H&R Block

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 2, 2006
geo: 
Kansas City , MO
United States
Missouri US
Records Breached: 

Unknown

H&R Block included Social Security numbers in a 40-digit number string on mailing labels.  Affected individuals were contacted.

Source: 
Dataloss DB

Indiana University, University Place Conference Center & Hotel

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 20, 2006
geo: 
Indianapolis , IN
United States
Indiana US
Records Breached: 

Unknown

The computer housing the reservations data base was compromised. Data included credit card account numbers and names.

Source: 
Security Breach Letter

Con Edison

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 1, 2006
geo: 
New York , NY
United States
New York US
Records Breached: 

15,000 Con Edison employees

Con Edison shipped two cartridge tapes to JPMorgan Chase in upstate Binghamton so it could input data on behalf of the NY Dept. of Taxation and Finance. One tape was apparently lost and contained employees' W-2 data, including names, addresses, Social Security numbers, taxes paid and salaries.

Source: 
Dataloss DB

Ernst & Young

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
February 13, 2006
geo: 
New York , NY
United States
New York US
Extra Info: 

Additional locations: Throughout the US and UK

38,000 BP employee in U.S. In addition to Sun, Cisco and IBM employees.

Records Breached: 

38,000

A laptop containing the names, dates of birth, genders, family sizes, Social Security numbers and tax identifiers for current and previous IBM, Sun Microsystems, Cisco, Nokia and BP employees was stolen from a locked car. While Ernst and Young waited until pressured to inform a majority of those affected about the breach, at least one CEO from the affected companies was contacted immediately.

Source: 
Security Breach Letter

Buffalo Bisons and Choice One Online

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 14, 2006
geo: 
Buffalo , NY
United States
New York US
Records Breached: 

Unknown

A hacker accessed sensitive financial information including the credit card numbers names, and passwords of customers who ordered items online. The Bisons mailed letters to affected customers and notified American Express, MasterCard, Discover, and Visa.

Source: 
Dataloss DB

Pages

Showing 521-530 of 783 results
Subscribe to BSO