Lawrence Memorial Hospital, Mid Continent Credit Servies, Inc. (Blue Sky Credit), BrickWire LLC

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
November 4, 2011
geo: 
Lawrence , KS
United States
Extra Info: 

Those with questions may call 785-505-4945 or email lmhcompllance@lmh.org.

Records Breached: 

10,000

A breach of a website hosted by BrickWire LLC resulted in the exposure of patient names, phone numbers, email addresses, health care providers, payment amounts, dates of payment, credit card information and checking account information.  Lawrence Memorial Hospital's vendor Blue Sky Credit used BrickWire LLC for the online bill-pay service offered to Lawrence Memorial's patients.  The personal and financial information of patients who paid through the website was accidentally made available on the Internet between September 20, 2011 and October 28, 2011. 

Source: 
PHIPrivacy.net

Pan American Games

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 24, 2011
Extra Info: 

This breach pertains to a website that was overseen by the Guadalajara (Mexico) 2011 Organizing Committee. No location is listed.

Records Breached: 

1,400 (No SSNs or financial information reported)

An anonymous tipster alerted reporters to a breach that allowed the personal information of journalists covering the Pan American Games to be viewed.  The tipster claimed that reporter names, dates of birth, the first five digits of passports, photos, family numbers, and addresses were accessible.  Reporters from across the Americas were affected.  The Guadalajara 2011 Organizing Committee stated that they had deleted the personal information from their database after the discovery.

Source: 
Databreaches.net

Department of Education

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 27, 2011
geo: 
Washington , DC
United States
Records Breached: 

5,000

As many as 5,000 users of the Department of Education's website may have had their information viewed by other users who logged in to the website.  The breach lasted for six to seven minutes and exposed Social Security numbers and other student information.  The site was shut down and examined for 48 hours after the incident.

Source: 
Databreaches.net

Wells Fargo

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
October 20, 2011
geo: 
Jacksonville , FL
United States
Extra Info: 

Customers in South Carolina were also affected.

Customers with questions may call 1-800-869-3557.

Records Breached: 

Unknown

A mailing error exposed customer bank account information to other customers.  Pages from other customer accounts which included bank account numbers, balances, and transactions were accidentally mailed to other customers in September paper statements.  The error was caused by a printer malfunction.  Wells Fargo temporarily took the printer out of service after the breach was discovered.  At least 50 customers noticed the problem.

Source: 
Databreaches.net

The Social Security Administration

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 13, 2011
geo: 
Washington , DC
United States
Records Breached: 

31,931

It appears that the Social Security Administration accidentally releases the names, Social Security numbers, and birth dates of thousands of living U.S. citizens each year in a database called the "Death Master File".  Social Security officials revealed that the number of U.S. citizens mistakenly listed each year is about 14,000, while 90 million are accurately reported.  A Scripps Howard News Service review of three recent copies revealed 31,931 living U.S. citizens who'd had their Social Security numbers released to U.S. business groups.

Source: 
Databreaches.net

Securities and Exchange Commission (SEC), Financial Tracking Technologies (FTT)

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 14, 2011
geo: 
Washington , DC
United States
Records Breached: 

Unknown

FTT, a contractor working with SEC's ethics compliance program, violated its agreement with SEC by providing names and account numbers to a subcontractor, or subcontractors without permission.  An SEC September 16 security review revealed that FTT had failed to comply with contractual obligations.  The system was taken offline and FTT was told to terminate all third party access to SEC systems.

Source: 
Databreaches.net

The College of New Jersey

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 30, 2011
geo: 
Ewing , NJ
United States
Records Breached: 

12,815 (No SSNs or financial information reported)

The College's On-Campus Student Employment System had a vulnerability that allowed student applicants to see the personal information of other students.  A student applicant notified the College of the problem on November 2 after seeing the information of 12 other students.  The system flaw was fixed within hours, but no duration was given for the breach.

Source: 
Databreaches.net

Contra Costa County

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
December 3, 2011
geo: 
Martinez , CA
United States
Extra Info: 

Patients with questions may call (925)-957-7400.

Records Breached: 

Unknown

Residents who owed money to the county health department had their names inadvertently published in a public document.  The names were published in a report to the Board of Supervisors dated July 27, 2010.  The error was discovered at the end of November, 2011.  No patient information was exposed, but the publication of the names in the report constitutes a breach of patient confidentiality laws.  The information was removed from the online report.

Source: 
PHIPrivacy.net

MDwise

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Indianapolis , IN
United States
Extra Info: 

People with Healthy Indiana Plan, Care Select, or Hoosier Healthwise memberships may have been affected.

Records Breached: 

2,700 (No SSNs or financial information reported)

An upgrade of MDwise's customer record computer system in February 2011 resulted in the leak of records from several organizations.  Anyone searching by name could have accessed the information online.  Members of Healthy Indiana Plan, Care Select, and Hoosier Healthwise may have had their names, addresses, Medicaid numbers, and doctors' names and addresses exposed online.  Administrators corrected the error as soon as it was detected.  

Source: 
PHIPrivacy.net

United Airlines

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 30, 2011
geo: 
Chicago , IL
United States
Records Breached: 

20 (No SSNs or financial information reported)

A customer checking frequent flyer miles on United Airlines' mobile website was able to view the names, Mileage Plus numbers, future flight itineraries with confirmation codes, and previous trips of other Unite Airlines customers.  The information could have allowed anyone to change another passenger's seating assignment or cancel a flight by using confirmation codes and last names.  

Source: 
Databreaches.net

Pages

Showing 31-40 of 787 results
Subscribe to DISC