MDwise

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Indianapolis , IN
United States
Extra Info: 

People with Healthy Indiana Plan, Care Select, or Hoosier Healthwise memberships may have been affected.

Records Breached: 

2,700 (No SSNs or financial information reported)

An upgrade of MDwise's customer record computer system in February 2011 resulted in the leak of records from several organizations.  Anyone searching by name could have accessed the information online.  Members of Healthy Indiana Plan, Care Select, and Hoosier Healthwise may have had their names, addresses, Medicaid numbers, and doctors' names and addresses exposed online.  Administrators corrected the error as soon as it was detected.  

Source: 
PHIPrivacy.net

United Airlines

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 30, 2011
geo: 
Chicago , IL
United States
Records Breached: 

20 (No SSNs or financial information reported)

A customer checking frequent flyer miles on United Airlines' mobile website was able to view the names, Mileage Plus numbers, future flight itineraries with confirmation codes, and previous trips of other Unite Airlines customers.  The information could have allowed anyone to change another passenger's seating assignment or cancel a flight by using confirmation codes and last names.  

Source: 
Databreaches.net

Vermont Department of Taxes

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Montpelier , VT
United States
Records Breached: 

1,332

The Vermont Department of Taxes website accidentally displayed the Social Security numbers of 1,332 individuals and the federal ID numbers of 245 businesses for two hours.  The personal data was contained in a weekly group of property transfer tax returns.  The three parties who were able to access the information were identified and contacted.  

Source: 
Databreaches.net

Advanced Occupation Medicine Specialists (AOMS)

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
January 11, 2012
geo: 
Bellwood , IL
United States
Extra Info: 

Patients with questions may call the AOMS security-breach hotline at 855-684-6179 to receive additional instructions and information.

Records Breached: 

7,226

Letters dictated by AOMS providers were accidentally uploaded onto a non-secure server in Europe. The information then became publicly searchable via internet.  AOMS learned of the breach on October 12, 2011.  People who were seen at AOMS for injuries and/or work-related examinations from July, 2009 through October 12, 2011 may have been affected by the breach.  No names, contact information, personal information, test results, financial information or Social Security numbers were exposed.

Source: 
HHS via PHIPrivacy.net

Department of Social Services Supplemental Nutrition Assistance Program

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
January 3, 2012
geo: 
Hartford , CT
United States
Records Breached: 

130

A subpoena by the Department of Social Services revealed the names and Social Security numbers of multiple people.  The subpoena was in response to reports that state employees had engaged in food stamp fraud.  Instead of separate subpoenas for each individual, a sheet with 40 names and a sheet with 90 names were sent.  This allowed state employees who are under investigation to learn that their fellow employees were under investigation, as well as their Social Security numbers.

Source: 
Media

Virginia Department of General Services

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
December 23, 2011
geo: 
Richmond , VA
United States
Records Breached: 

639

Social Security numbers, tax identification numbers, and other types of personal information were exposed on the Virginia Department of General Services website since 2001.  The database was not accessible via search engines, but an employee discovered that the information could be found by anyone doing a focused search on the actual website.  The information was removed after the discovery.

Source: 
Databreaches.net

Massachusetts Technology Collaborative

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
June 26, 2009
geo: 
Boston , MA
United States
Records Breached: 

810

Residents who applied for the Massachusetts Commonwealth Solar rebate program had their personal information posted on a government website for 50 minutes.  One user accessed the file during the incident. Names and Social Security numbers were exposed.

Source: 
Dataloss DB

The Public School Employees' Retirement System

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
November 15, 2011
geo: 
Harrisburg , PA
United States
Records Breached: 

2,000

About 2,000 pension fund members had their information placed online when an employee accidentally posted an unencrypted file on a public website.  At least one person saw the information.  The date of this error was not reported.  Member names and Social Security numbers were exposed. 

Source: 
Databreaches.net

The Social Security Administration

Type of organization: 
Year of Breach: 
Type of breach: 
Under Review: 
0
Date Breach Made Public: 
October 13, 2011
geo: 
Washington , DC
United States
Records Breached: 

31,931

It appears that the Social Security Administration accidentally releases the names, Social Security numbers, and birth dates of thousands of living U.S. citizens each year in a database called the "Death Master File".  Social Security officials revealed that the number of U.S. citizens mistakenly listed each year is about 14,000, while 90 million are accurately reported.  A Scripps Howard News Service review of three recent copies revealed 31,931 living U.S. citizens who'd had their Social Security numbers released to U.S. business groups.

Source: 
Databreaches.net

University of Rhode Island

Type of breach: 
Year of Breach: 
Type of organization: 
Under Review: 
0
Date Breach Made Public: 
August 27, 2012
geo: 
Kingston , RI
United States
Extra Info: 

The University of Rhode Island released a notice on their website herehttp://www.uri.edu/datanotice/

Records Breached: 

1,000

Students and faculty who were associated with the University of Rhode island after April of 2007 may have had their personal information exposed.  The information was placed on a server that was not set-up or intended to be used for storing sensitive information.  The information was on the College of Business Administration's computer server and included names, Social Security numbers, dates of birth, hire year, rank, and limited compensation information.  The information was discovered to be publicly accessible on July 31.

Source: 
Databreaches.net

Pages

Showing 41-50 of 790 results
Subscribe to DISC