Western University of Health Sciences

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 18, 2012
geo: 
Pomona , CA
United States
California US
Records Breached: 

Unknown

Western University of Health Sciences' BanWeb Self-Service Federal Work Study reports were accessible to people who used BanWeb with a Western University of Health Sciences user ID and password.  The reports contained names, Social Security numbers, and direct deposit bank account information in some cases. The information was available for an unspecified amount of time. Western University of Health Sciences conducted an investigation and reported that there was no reason to believe sensitive information was accessed by unauthorized BanWeb users.

Source: 
California Attorney General

Town Council of Chapel Hill

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 2, 2012
geo: 
Chapel Hill , NC
United States
North Carolina US
Records Breached: 

12

A licensed clinical social worked accidentally attached confidential client information to an email that was forwarded to town council colleagues. A copy of her and her husband's 2011 income tax returns was also in the email. The email automatically became available to the public and the error was noticed nearly a week later.  Unfortunately, the email was also forwarded a second time to a public account.  Consequently, the information was publicly available for a week.  

Source: 
PHIPrivacy.net

Rite Aid Corporation

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 27, 2012
geo: 
Camp Hill , PA
United States
Pennsylvania US
Records Breached: 

Unknown

A customer using RiteAid's mobile app to check a prescription noticed that he was able to access the names, addresses, and prescription records of other customers.  The customer was able to identify some of the problems by using his computer science background.  He noticed there was no secure login tied to web service calls made from the smartphone application.  The customer was able to correspond with several RiteAid representatives and RiteAid began to address some of the security concerns.

Source: 
PHIPrivacy.net

Northstar Healthcare

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 18, 2012
geo: 
Chicago , IL
United States
Illinois US
Records Breached: 

170 (No SSNs or financial information reported)

An email that was sent to patients displayed the names of all patients who received the email.  The email was sent to patients being treated for HIV or AIDS and inadvertently revealed names and HIV status.

Source: 
PHIPrivacy.net

City of Ocoee

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
August 6, 2012
geo: 
Ocoee , FL
United States
Florida US
Records Breached: 

350

Over 350 city workers had their information posted on a public server in January.  An employee inadvertently uploaded the sensitive information to a public domain server as part of an annual audit.  Names, Social Security numbers, salaries, and addresses were exposed.

Source: 
Media

Hagerty Insurance Agency, LLC

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
February 21, 2012
geo: 
Traverse City , MI
United States
Michigan US
Extra Info: 

Those with questions may call 800-922-4050.

Records Breached: 

Unknown

An administrative change on www.hagerty.com exposed the personal information of consumers.  Names, addresses, driver's license numbers, policy numbers, email addresses, phone numbers, and dates of birth were temporarily available online.  The error occurred late in the afternoon of February 14 and was corrected during the afternoon of the following day.

Source: 
Dataloss DB

Education Resources Information Center (ERIC)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
September 12, 2012
geo: 
Washington , DC
United States
District Of Columbia US
Extra Info: 

An official notice was posted here:http://www.eric.ed.gov/pdf_availability.html

Those wishing to access a specific PDF should email ERICRequests@ed.gov.  

Records Breached: 

Unknown

ERIC began an effort to remove personally identifiable information from their full text documents in August of 2012.  The information had been publicly available through other means, but it was appearing more frequently in internet searches and becoming easier to access because of web advances.  Access to many full text documents on ERIC's database was temporarily disabled. Every document will be checked for personally identifiable information before being restored. 

Source: 
Databreaches.net

Cumberland County Sheriff's Office

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
September 7, 2012
geo: 
Portland , ME
United States
Maine US
Records Breached: 

180

Around 180 people who were arrested between August 27 and September 4 of 2012 had their Social Security numbers exposed by an administrative error. A new software update intended to automatically post regular arrest lists on the department's Facebook page and distribute them to media outlets also released Social Security numbers of those who were arrested. The error was discovered within 45 minutes, but between 70 and 50 individuals accessed the information during that time.

Source: 
Databreaches.net

Alicare, National Retirement Fund

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 13, 2012
geo: 
White Plains , NY
United States
New York US
Records Breached: 

Unknown

A mailing error caused the Social Security numbers of National Retirement Fund participants to be printed on the outside of a mailed envelope.  Names and mailing addresses were also exposed.

Source: 
Dataloss DB

Valley National Bank, American Stock Transfer and Trust Company, LLC

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 14, 2012
geo: 
New York , NY
United States
New York US
Records Breached: 

Unknown

A mailing error caused 1099 forms to be sent to the wrong addresses on January 17, 2012.  Names, tax identification numbers, and addresses were exposed because incorrect or multiple addresses were printed on the forms.  Information on stock dividends and phone numbers was also exposed.  The error was discovered when some of the forms were returned by the post office as undeliverable.

Source: 
Dataloss DB

Pages

Showing 1-10 of 899 results
Subscribe to DISC