University of Florida

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 22, 2012
geo: 
Gainesville , FL
United States
Records Breached: 

719

People who had an unclaimed check or refund from the University of Florida had their Social Security numbers posted on Florida's Unclaimed Property website.  The information had been posted in July of 2005 and is from debts prior to that time, but had been posted through January 12, 2012.  The University submitted its Annual Unclaimed Property Report to the Florida State Department of Financial Services.  The state accidentally posted the Social Security numbers in addition to the usual information.  The University of Florida was the only entity affected by the mistake.

Source: 
Databreaches.net

Piedmont Behavioral Healthcare (PBH), Alamance-Caswell LME (AC LME)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 25, 2012
geo: 
Concord , NC
United States
Records Breached: 

50,000

A miscommunication caused AC LME to lose access to servers containing sensitive health information.  An Alamance County employee mistakenly changed a lock on the facility that housed data servers for AC LME.  It appears that AC LME forgot to inform the county that AC LME was extending a contract for server maintenance.  Former consumers of AC LME, including those who became PBH consumers on October 1, 2011, may have had their personal health information stored on these servers.

Source: 
HHS via PHIPrivacy.net

City of Rye

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
February 13, 2012
geo: 
Rye , NY
United States
Records Breached: 

Unknown

An unknown number of employee Social Security numbers were mistakenly disclosed after the City responded to a Freedom of Information law request.  The Social Security numbers were included along with payroll data to the entity that requested the information.  City officials verified that the information would not be passed on after the breach was discovered.

Source: 
Databreaches.net

University of Texas-Pan American

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
November 11, 2011
geo: 
Edinburg , TX
United States
Extra Info: 

Those with questions may email infosecurity@utpa.edu.

Records Breached: 

19,276 (No SSNs or financial information reported)

On September 1, 2011, a spreadsheet containing information on 19,276 students was accidentally made accessible from the internet due to a administrative error.  The spreadsheet contained the names, addresses, phone numbers, email addresses, majors, class or classes, levels, colleges, student ID numbers, and GPAs of students enrolled as of September 1 of 2011.  The problem was corrected on November 2 soon after it was discovered. The spreadsheet had been accessed 15 times by unknown parties between September 1 and November 2.  

Source: 
Databreaches.net

United States Postal Service (USPS)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 12, 2011
geo: 
Washington , DC
United States
Records Breached: 

5,400 (No full credit card numbers or SSNs revealed)

A customer logged onto her USPS online store account and was able to see the name, address, and the final four digits of another customer's credit card number.  The customer alerted the USPS customer service, but was told that the error had already been noted. On October 28, USPS became aware that a coding issue during an update had resulted in an error that exposed credit card information.  Customers were notified of the problem on November 8.  The error was subsequently fixed.

Source: 
Databreaches.net

Jefferson County Public Schools

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 15, 2011
geo: 
Louisville , KY
United States
Records Breached: 

6,500 (No SSNs or financial information exposed)

Around 6,500 ACT Explore test results for 8th graders were mailed to incorrect addresses.  The breach was discovered when parents began calling the district.  Parents were asked to shred the tests.  The exact cause of the mailing error is unknown.

Source: 
Databreaches.net

The College of New Jersey

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 30, 2011
geo: 
Ewing , NJ
United States
Records Breached: 

12,815 (No SSNs or financial information reported)

The College's On-Campus Student Employment System had a vulnerability that allowed student applicants to see the personal information of other students.  A student applicant notified the College of the problem on November 2 after seeing the information of 12 other students.  The system flaw was fixed within hours, but no duration was given for the breach.

Source: 
Databreaches.net

MassBay Community College

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 23, 2011
geo: 
Wellesley , MA
United States
Records Breached: 

Unknown

A glitch allowed nearly 400 workers from 2002 to 2011 to view the personal information of any employees in MassBay's worker database system.  The information included Social security numbers, home addresses, and other personnel information. 

Source: 
Databreaches.net

Skagit County Health Department

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 26, 2011
geo: 
Mount Vernon , WA
United States
Records Breached: 

Unknown

A student ran a Google search on her own name in mid-September and discovered some of her private information online.  Skagit County Health Department was notified.  People who used services at other county departments also had information exposed.  The types of information did not include credit card numbers, Social Security numbers, dates of birth, or addresses, but did include information from receipts for department services.

Source: 
Databreaches.net

Sitka Wellness Center, EMR4Doctors.com

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
November 23, 2011
geo: 
Sitka , AK
United States
Extra Info: 

Concerned patients may call (907) 747-2726.

Records Breached: 

566

A patient discovered their own personal information and that of 565 others online.  Patient names, Social Security numbers, addresses, and dates of birth were exposed.  A chiropractor from the Sitka Wellness Center claims that an electornic medical record software vendor known as EMR4Doctors.com stored the patient information for 9 months in 2008.  The company stopped doing business in 2009.  The information was removed from the Internet.

Source: 
PHIPrivacy.net

Pages

Showing 21-30 of 788 results
Subscribe to DISC