Jefferson County Public Schools

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 15, 2011
geo: 
Louisville , KY
United States
Records Breached: 

6,500 (No SSNs or financial information exposed)

Around 6,500 ACT Explore test results for 8th graders were mailed to incorrect addresses.  The breach was discovered when parents began calling the district.  Parents were asked to shred the tests.  The exact cause of the mailing error is unknown.

Source: 
Databreaches.net

Department of Veterans Affairs, Ancestry.com

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 20, 2012
geo: 
Washington , DC
United States
Records Breached: 

2,200

VA officials gave veteran Social Security numbers, names, and possibly other information to Ancestry.com in March of 2011 in response to a Freedom of Information Act request from the genealogy site.  The records should have only contained the information of deceased veterans, but instead contained the information of over 2,200 living veterans. The information was then posted in 2011 and taken down in January of 2012.

Source: 
Databreaches.net

MDwise

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Indianapolis , IN
United States
Extra Info: 

People with Healthy Indiana Plan, Care Select, or Hoosier Healthwise memberships may have been affected.

Records Breached: 

2,700 (No SSNs or financial information reported)

An upgrade of MDwise's customer record computer system in February 2011 resulted in the leak of records from several organizations.  Anyone searching by name could have accessed the information online.  Members of Healthy Indiana Plan, Care Select, and Hoosier Healthwise may have had their names, addresses, Medicaid numbers, and doctors' names and addresses exposed online.  Administrators corrected the error as soon as it was detected.  

Source: 
PHIPrivacy.net

United Airlines

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 30, 2011
geo: 
Chicago , IL
United States
Records Breached: 

20 (No SSNs or financial information reported)

A customer checking frequent flyer miles on United Airlines' mobile website was able to view the names, Mileage Plus numbers, future flight itineraries with confirmation codes, and previous trips of other Unite Airlines customers.  The information could have allowed anyone to change another passenger's seating assignment or cancel a flight by using confirmation codes and last names.  

Source: 
Databreaches.net

Vermont Department of Taxes

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Montpelier , VT
United States
Records Breached: 

1,332

The Vermont Department of Taxes website accidentally displayed the Social Security numbers of 1,332 individuals and the federal ID numbers of 245 businesses for two hours.  The personal data was contained in a weekly group of property transfer tax returns.  The three parties who were able to access the information were identified and contacted.  

Source: 
Databreaches.net

Advanced Occupation Medicine Specialists (AOMS)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Bellwood , IL
United States
Extra Info: 

Patients with questions may call the AOMS security-breach hotline at 855-684-6179 to receive additional instructions and information.

Records Breached: 

7,226

Letters dictated by AOMS providers were accidentally uploaded onto a non-secure server in Europe. The information then became publicly searchable via internet.  AOMS learned of the breach on October 12, 2011.  People who were seen at AOMS for injuries and/or work-related examinations from July, 2009 through October 12, 2011 may have been affected by the breach.  No names, contact information, personal information, test results, financial information or Social Security numbers were exposed.

Source: 
HHS via PHIPrivacy.net

Department of Social Services Supplemental Nutrition Assistance Program

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 3, 2012
geo: 
Hartford , CT
United States
Records Breached: 

130

A subpoena by the Department of Social Services revealed the names and Social Security numbers of multiple people.  The subpoena was in response to reports that state employees had engaged in food stamp fraud.  Instead of separate subpoenas for each individual, a sheet with 40 names and a sheet with 90 names were sent.  This allowed state employees who are under investigation to learn that their fellow employees were under investigation, as well as their Social Security numbers.

Source: 
Media

Virginia Department of General Services

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 23, 2011
geo: 
Richmond , VA
United States
Records Breached: 

639

Social Security numbers, tax identification numbers, and other types of personal information were exposed on the Virginia Department of General Services website since 2001.  The database was not accessible via search engines, but an employee discovered that the information could be found by anyone doing a focused search on the actual website.  The information was removed after the discovery.

Source: 
Databreaches.net

Department of Education

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 27, 2011
geo: 
Washington , DC
United States
Records Breached: 

5,000

As many as 5,000 users of the Department of Education's website may have had their information viewed by other users who logged in to the website.  The breach lasted for six to seven minutes and exposed Social Security numbers and other student information.  The site was shut down and examined for 48 hours after the incident.

Source: 
Databreaches.net

Milk Inc.

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
March 16, 2012
geo: 
San Francisco , CA
United States
Records Breached: 

Unknown

An employee of another company discovered a security issue in Oink.  Oink is a "rate everything" application from mobile application developer Milk Inc.  The security issue allowed anyone to download personal information of another Oink user by entering another person's username.  Folders with associated email addresses, photos, and other user site information may have been exposed. Oink shutdown and the employees of Milk Inc. joined Google for a new project shortly after the issue was discovered.

Source: 
Databreaches.net

Pages

Showing 41-50 of 794 results
Subscribe to DISC