American Stock Transfer & Trust Company, LLC

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 13, 2012
geo: 
Brooklyn , NY
United States
New York US
Records Breached: 

Unknown

Mail packages containing the beneficiary statements of certain shareholders for the year of 2011 were mailed to incorrect addresses on April 2, 2012.  The statements contained names, tax identification numbers of the intended shareholders, and addresses.  Shareholders of a single, unnamed issuer that used American Stock Transfer as a sub-transfer agent most likely had their information mailed to a different shareholder than the shareholder listed on the beneficiary statement.

Source: 
Dataloss DB

Investacorp, Inc.

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
May 29, 2012
geo: 
Miami , FL
United States
Florida US
Extra Info: 

MML Investors Services LLC, First Rate Investment Systems, and Massachusetts Mutual Life Insurance Company (MassMutual) were affected by the breach.

Records Breached: 

Unknown

A vendor of the broker-dealer, National Financial Services (NFS), used by Investacorp was involved in a data security breach.  On or around March 12, 2012, Investacorp learned that an NFS vendor had inadvertently shared electronic files with another federally regulated broker-dealer that also uses NFS's services.  The incident occurred on November 29, 2011 and was first noticed on February 13, 2012. The information included client names, Social Security numbers, and certain types of account data.

Source: 
California Attorney General

University of California Los Angeles (UCLA) Health System

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 24, 2012
geo: 
Los Angeles , CA
United States
California US
Records Breached: 

Unknown

The UCLA Health System placed an audit report on billing practices online in May.  It was later discovered that an employee had accidentally attached information containing the first name, last name, and five-digit billing code related to at least one patient's emergency department visit in May of 2011.  It is unclear how many people were affected and if others may have had additional information exposed.

Source: 
PHIPrivacy.net

Florida Department of Children and Families

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 2, 2012
geo: 
Tallahassee , FL
United States
Florida US
Records Breached: 

100,000

The information of Florida child care workers was placed on a state website.  The information was not password protected and could have been found through an internet search. An unnamed vendor working for the state of Florida was responsible for placing the information online.  Florida daycare workers may have had their dates of birth, names, and Social Security numbers exposed. It is not clear how long the information was exposed.

Source: 
Databreaches.net

First Data Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
May 11, 2012
geo: 
Atlanta , GA
United States
Georgia US
Records Breached: 

15,399

On April 25, 2012, First Data learned that certain limited personal information about approximately 108,500 merchants who currently process with First Data or who applied for processing services had been shared outside of the company. The names, addresses, and Social Security numbers of merchants who submitted applications to First Data for merchant processing services were purposely disclosed to an outside party in January and February of 2012.  First Data later discovered that this action was not clearly permitted in some merchant contracts.

Source: 
California Attorney General

Office of the Texas Attorney General

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 27, 2012
geo: 
Austin , TX
United States
Texas US
Records Breached: 

6.5 million

Lawyers responsible for challenging a voter ID law in Texas requested the Texas voter database for analysis.  The Texas Attorney General's office released encrypted discs with the personal records of 13 million Texas voters, but half still contained Social Security numbers.  A state police officer was dispatched to New York, Washington D.C., and Boston to retrieve the encrypted discs when the opposing lawyers revealed that a mistake had occurred.

Source: 
Media

Volunteer State Community College

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
April 30, 2012
geo: 
Gallatin , TN
United States
Tennessee US
Extra Info: 

Those with questions may call (615) 230-3390.

Records Breached: 

14,000

The University became aware of an unintended disclosure.  Files with the information of current and former faculty and former students were placed on a web server that was not secure.  The information could have been accessed anytime between 2008 and the discovery of the error.  Names and Social Security numbers were exposed.

Source: 
Databreaches.net

Choice Hotels Internationals

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 26, 2012
geo: 
Silver Spring , MD
United States
Maryland US
Records Breached: 

Unknown

An unknown number of customers had their personal information entered into the wrong field in a database.  The information should have been encrypted but was not because of the error. Customers may have received mail with their credit card number, driver's license number, Social Security number, passport number, or any combination of these elements printed on the outside of envelopes. The issue was discovered in late December of 2011.

Source: 
California Attorney General

Saint Mary's Hospital, Naugatuck Valley Community College

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 23, 2012
geo: 
Waterbury , CT
United States
Connecticut US
Records Breached: 

Unknown

A Naugatuck Valley Community College instructor used patient X-rays from St. Mary's Hospital to teach radiology technology.  The instructor obtained the X-rays by using his Saint Mary's employee login to access medical records.  The X-rays were used without permission and contained patient names, dates of birth, and physician notes.  The instructor told students not to disclose the practice.

Source: 
PHIPrivacy.net

University of Arkansas for Medical Sciences (UAMS)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
April 20, 2012
geo: 
Little Rock , AR
United States
Arkansas US
Records Breached: 

7,000 (No SSNs or financial information reported)

A UAMS physician sent financial data to an individual who was not a member of UAMS's workforce in February of 2012.  Patient identifiers had not been removed from the data and UAMS learned of the error on April 6.  Patients of interventional radiology seen at UAMS between 2009 and 2011 had their names, UAMS account numbers, dates of service, interventional radiology procedures, diagnosis codes, charges, and payments exposed.

Source: 
PHIPrivacy.net

Pages

Showing 1-10 of 842 results
Subscribe to DISC