Massachusetts eHealth Collaborative

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 6, 2011
geo: 
Waltham , MA
United States
Records Breached: 

14,475 (222 Social Security numbers)

A briefcase was stolen from an employee's car during lunch sometime during the spring of 2011.  The briefcase contained a company laptop that had not yet been encrypted and paper copies of appointment schedules. The laptop contained the information of patients and providers from 18 practices. A recent backup of the laptop files revealed that 5,338 subscriber numbers, 2,777 names with no other information, and 222 names with associated Social Security numbers, dates of birth, subscriber numbers, and phone numbers had been on the laptop.

Source: 
PHIPrivacy.net

Metabasis Therapeutics

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 12, 2011
geo: 
La Jolla , CA
United States
Records Breached: 

90

A temporary employee of Metabasis Therapeutics was assigned to computer help-desk support in 2008.  The dishonest employee somehow obtained unauthorized access to the names and personal-identification information of Metabasis Therapeutics employees and their relatives.  The information was used to open credit cards; the credit cards were used to purchase travel packages, which were then resold. A total of $250,000 worth of Las Vegas air, hotel, and show-ticket packages were purchased on Travelocity.com.

Source: 
Media

Pearl River Resort

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 22, 2011
geo: 
Neshoba , MS
United States
Records Breached: 

Unknown

A possible breach in the security systems used for processing credit card transactions is being investigated.  There is no information on the type of breach or how many customers may have been affected.  The cause of the breach is also unknown.

Source: 
Databreaches.net

Stratfor.com, Strategic Forecasting Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 25, 2011
geo: 
Austin , TX
United States
Records Breached: 

68,063

Anonymous/#AntiSec has claimed responsibility for the hack of a global intelligence company named Stratfor.  Hackers were able to obtain tens of thousands of credit card numbers and other personal information from Stratfor.com.  In addition to credit card numbers with security codes, addresses, and names, the hackers obtained 200GB of emails.  The hackers also claim to have used the credit card information to make over $1 million in donations to charities. Hackers later revealed that the information was even easier to use since it had not been encrypted.

Source: 
Databreaches.net

MyVetDirect.com, Butler Schein Animal Health (BSAH)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 20, 2011
geo: 
Dublin , OH
United States
Records Breached: 

Unknown

A breach of Butler Schein Animal Health's (BSAH) systems (MyVetDirect.com) may have affected clients whose veterinarian's websites were hosted by MyVetDirect.com.  People who placed orders on veterinarian websites that were hosted by MyVetDirect.com may have had their names, credit card information and numbers, addresses, telephone numbers, email addresses, billing and delivery information, and other purchase information obtained.

Source: 
Databreaches.net

Peoples Gas, North Shore

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 16, 2011
geo: 
Chicago , IL
United States
Records Breached: 

100

A contract worker or employee of a contractor may have stolen and misused the personal information of an undisclosed number of customers.  The natural gas utilities serve nearly one million customers in the Chicago area, but state law bars the utilities from disclosing the number of customers affected. However, a November news report revealed that the theft of information had occurred in October and over 100 people were affected.  An employee working in iQor's human resources department was linked to the incident. The employee was fired and faces criminal investigation and prosecution.

Source: 
Databreaches.net

Indalex

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 25, 2011
geo: 
Modesto , CA
United States
Records Breached: 

Unknown

An abandoned Indalex plant still contained personnel records. Employee names, Social Security numbers, medical records, addresses, and other sensitive information were exposed when scavengers looking for aluminum and other materials ravaged the abandoned plant.  The plant was closed in 2008 and Indalex filed for bankruptcy in 2009.  Indalex received clearance from a bankruptcy court to officially abandon the plant in 2010.  The damage was discovered when 40 workers from the Stanislaus County jail alternative work program cleared the plant. 

Source: 
Databreaches.net

Diversified Resources Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 14, 2011
geo: 
Waycross , GA
United States
Records Breached: 

863 (No SSNs or financial information reported)

The theft of a laptop on or around August 11, 2011 resulted in the exposure of protected health information.

Source: 
HHS via PHIPrivacy.net

Denver Players, Denver Sugar

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
June 8, 2011
geo: 
Denver , CO
United States
Records Breached: 

Unknown

Hundreds of documents were stolen from the home of the former owner of the escort services.  A computer and a large container of files were stolen during the Monday, June 6 burglary.  The files contained the names and numbers of clientele as well as appointment logs, schedule books and credit card receipts.  Some of the clients used fake names and some had high profile status.  Denver Players and Denver Sugar had previously been exposed as prostitution operations.

Source: 
Databreaches.net

Sony Pictures, Sony Corporation of America

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
June 6, 2011
geo: 
New York , NY
United States
Records Breached: 

1,000,000 (No SSNs or financial information reported)

Hackers called LulzSec obtained over one million Sony customer passwords.  The hackers located data that included passwords, email addresses, phone numbers, home addresses, and dates of birth.  The information was not encrypted and was posted on LulzSec's website.  People wishing to enter online sweepstakes entered their real or fake information.  Anyone who used their Sony Pictures sweepstakes password for another account should immediately change their passwords so that they do not match each other.

Source: 
Databreaches.net

Pages

Showing 91-100 of 623 results
Subscribe to BSO