IntraCare North Hospital

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 8, 2012
geo: 
Houston , TX
United States
Records Breached: 

741 (No SSNs reported)

A former employee used patient information to file false income tax returns. The information of 741 patients was accessible in a binder.  The employee worked as an intake coordinator at the Hospital from March 15 to August 18 of 2011.  The breach was not discovered until April 18 of 2012.  

Source: 
PHIPrivacy.net

Minnesota Department of Public Safety Driver and Vehicle Services

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 27, 2012
geo: 
St. Paul , MN
United States
Records Breached: 

3,700 (No SSNs or financial information reported)

An internal audit revealed that an employee at an unnamed Minnesota car dealership allowed an unauthorized friend to use his login information.  The login information provided access to a vehicle database for processing consumer sales.  Consumer vehicle identification numbers, names, addresses, and dates of birth may have been exposed.  The employee's friend worked at a vehicle repossession company and may have allowed additional individuals to use the login credentials.  The employee who revealed his login information may face criminal charges.

Source: 
Dataloss DB

Taco Bell, McDonald's, Wrigley Field, Ralph Lauren Restaurant (RL Restaurant)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 28, 2012
geo: 
Chicago , IL
United States
Records Breached: 

Unknown

Six defendants face criminal charges for their roles in a fraud ring that utilized skimming devices in the Chicago area.  Some of the defendants were dishonest employees who used a skimming device to read and record customer information as customers made purchases.  Others recruited these dishonest employees and some used the card information to make fake cards and fraudulent purchases.

Source: 
Dataloss DB

Wave House

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 2, 2012
geo: 
San Diego , CA
United States
Records Breached: 

200

A former employee allegedly stole hundreds of applications and contracts while employed between May 2010 and January 2012. He is accused of making at least $40,000 in online purchases and pleaded not guilty to 17 counts of identity theft and one count each of grand theft, false personation, and a drug charge. He faces 15 years and eight months in prison if convicted.

UPDATE (08/08/2012): The dishonest employee entered a plea of guilty. He faces at least 180 days and up to one year in jail.  He is scheduled to be sentenced on September 6.

Source: 
Databreaches.net

North Point Dental Care

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 4, 2012
geo: 
Winston Salem , NC
United States
Records Breached: 

10,000 (No SSNs or financial information reported)

The owner of North Point Dental accused a former colleague of stealing the information of about 10,000 current and former patients.  The men worked together on a political campaign and the former colleague used the patient information to call patients for campaign support as part of his role as the campaign manager.  The former campaign manager countered that he had received an email from the dentist encouraging him to take information from an office computer and use it to call the patients.

Source: 
PHIPrivacy.net

Hawaii Community Federal Credit Union (HCFCU)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 28, 2012
geo: 
Kailua-Kona , HI
United States
Records Breached: 

Unknown

An HCFCU member filed a complaint in 2011 after suspecting that their information had been improperly used for an HCFCU board nomination process. It became apparent that several employees had added names to nomination petitions, then went to credit union members to have them sign the petitions. Fewer than 500 of the 40,000 HCFCU members had their account information and the last four digits of their Social Security numbers accessed. The employees involved were disciplined and/or had their employment terminated.

Source: 
Dataloss DB

Scripps College Financial Aid Office

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 12, 2012
geo: 
Claremont , CA
United States
Records Breached: 

Unknown

A former employee of Scripps College allowed a personal contact outside of the College to access financial aid application information.  The issue was discovered during a review of Scripps College Financial Aid Office processes.  It appears that the former employee shared the information to obtain assistance in evaluating applications and preparing potential aid packages.  Names, Social Security numbers, dates of birth, and other financial information may have been exposed at various times between 2008 and 2012.

Source: 
California Attorney General

Pulaski Bank, Pulaski Financial

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 16, 2012
geo: 
Creve Couer , MO
United States
Records Breached: 

Unknown

Three former Pulaski employees are accused of accessing and exporting the mortgage data of customers.  A former loan officer emailed a large file to an outside email account a month before leaving Pulaski.  A former closing supervisor also allegedly transferred documents onto a portable electronic storage device before resigning.  The data appears to have been taken to a competitor.  Pulaski Financial filed a lawsuit against three former employees and their possible new employer, First State Bank of St. Charles, Missouri.

Source: 
Databreaches.net

Safe Ride Services, Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 17, 2012
geo: 
Phoenix , AZ
United States
Records Breached: 

42,000 (No SSNs or financial information reported)

A former employee may have accessed computer systems without authorization and accessed service files.  The incident or incidents occurred between August 31, 2011 and January 31, 2012. Employee personal information as well as patient demographic and insurance information were exposed.  It is unclear if the former employee was currently employed at the time of the incidents.  The incident was posted on the HHS website on June 8.

Source: 
HHS via PHIPrivacy.net

Oregon State University

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
July 25, 2012
geo: 
Corvallis , OR
United States
Records Breached: 

21,000

An unnamed check printing vendor for the University copied data from the University's cashier's office during software upgrades.  The information included 30,000 to 40,000 checks that contained student and employee names, University IDs, check numbers, and check amounts.  Current and former student, faculty, and staff records older than 2004 may have included Social Security numbers. it does not appear that the vendor acted with malicious intent.

Source: 
Media

Pages

Showing 1-10 of 546 results
Subscribe to INSD