Blount memorial Hospital


Location

Maryville, TN
United States
35° 45' 23.2992" N, 83° 58' 13.6524" W
Date Breach Made Public: 
October 18, 2012
geo: 
Maryville, TN
United States
Records Breached: 

27,000 (5,000 SSNs reported)

A password-protected laptop was stolen from an employee's home on August 25.  It contained two groups of patient data.  Patient names, dates of birth, responsible party names, patient addresses, physician names, and billing information for 22,000 patients were on the laptop. An additional 5,000 patients had similar information exposed as well as their Social Security numbers and other non-medical information.

Source: 
PHIPrivacy.net

Kaiser Permanente


Location

Oakland, CA
United States
37° 48' 15.7104" N, 122° 16' 16.0104" W
Date Breach Made Public: 
October 29, 2012
geo: 
Oakland, CA
United States
Extra Info: 

Those with questions may call 866-578-5413.

Records Breached: 

Unknown

A Kaiser Permanente Northern California Region Recruitment employee mistakenly sent an email to unauthorized parties on August 24.  Former Northern California Kaiser employees who left Kaiser between 1990 and 2006 may have had their names and Social Security numbers exposed. Kaiser IT Security conducted a detailed analysis to confirm that the recipient did not forward or print the email. The analysis also revealed that the email had been deleted and could no longer be accessed.

Source: 
California Attorney General

Women & Infants Hospital


Location

Providence, RI
United States
41° 49' 26.3604" N, 71° 24' 46.2024" W
Date Breach Made Public: 
November 6, 2012
geo: 
Providence, RI
United States
Extra Info: 

WomenandInfants.org posted a notice: http://www.womenandinfants.org/news/Confidentiality-Notice-for-Patients.cfm

Those with questions may call 1-877-810-7928.

Records Breached: 

14,004 (Unknown number of SSNs)

Unencrypted backup tapes containing ultrasound images from ambulatory sites were discovered missing on September 13.  The information was from Providence, Rhode Island between 1993 and 1997 and New Bedford, Massachusetts between 2002 and 2007.  Patient names, dates of birth, dates of exams, physicians' names, and patient ultrasound images were exposed.  A limited number of current and former patients also had their Social Security numbers exposed. Notifications began on November 5.

Source: 
PHIPrivacy.net

Bob Ward & Sons


Location

Bozeman, MT
United States
45° 41' 0.456" N, 111° 3' 1.7964" W
Date Breach Made Public: 
November 10, 2012
geo: 
Bozeman, MT
United States
Records Breached: 

Unknown

The Bob Ward & Sons website was hacked on June 6, 2011.  Customers who made online purchases between May 31 and August 3 of 2012 may have had their names, addresses, and credit card information exposed.  Ward became aware of the issue when he received a notice from Discover that revealed some customers had experienced fraudulent charges.  

Source: 
Databreaches.net

University of Arkansas for Medical Sciences (UAMS)


Location

Little Rock, AR
United States
34° 44' 47.3316" N, 92° 17' 22.542" W
Date Breach Made Public: 
November 27, 2012
geo: 
Little Rock, AR
United States
Extra Info: 

Anyone who was a patient at UAMS and had surgery or was seen by a neurosurgeon from January 2010 to June 2010 may call UAMS toll-free hotline at 888-729-2755 to learn if they were affected by the breach.

Records Breached: 

1,500 (No SSNs or financial information reported)

A former resident doctor kept the personal information of about 1,500 patients as part of a lawsuit she filed against UAMS.  She also claimed to have kept the information for research purposes.  UAMS became aware of the issue on October 9 when the former resident doctor used the documents as part of her lawsuit.  UAMS learned that she kept additional documents on November 7 and had provided them to UAMS attorneys on June 25. Some patients had their names, addresses, dates of birth, medical record numbers, and dates of service exposed.

Source: 
PHIPrivacy.net

Wilton Brands, LLC.


Location

Woodridge, IL
United States
41° 44' 49.11" N, 88° 3' 1.2276" W
Date Breach Made Public: 
December 12, 2012
geo: 
Woodridge, IL
United States
Records Breached: 

Unknown

Wilton learned that a malicious user was able to view user information between July 19 and October 2 of 2012.  The user had added a file to a computer server that hosts www.wilton.com and www.copco.com.  Names, addresses, telephone numbers, and payment card numbers, expiration dates, and security codes may have been accessed.  The discovery was made sometime around October 31 and notifications were sent on December 10.

Source: 
California Attorney General

CCS Medical


Location

Savannah, GA
United States
32° 5' 0.7476" N, 81° 5' 59.4024" W
Date Breach Made Public: 
December 21, 2012
geo: 
Savannah, GA
United States
Extra Info: 

The breach occurred in Florida and the location listed is that of CCS Medical's headquarters.

Records Breached: 

6,601 (23 people confirmed affected)

An employee reported that another employee appeared to have been misusing patient information.  The dishonest employee may have accessed, recorded, and disclosed Social Security numbers and other personal information for the purpose of obtaining fraudulent tax returns.  The employee was reported on September 20 and the possibility that the employee had engaged in dishonest behavior was confirmed on October 17.  Patient information that was maintained by CCS Medical between May 1, and September 21, 2012 may have been accessed.

Source: 
PHIPrivacy.net

The College of St. Scholastica


Location

Duluth, MN
United States
46° 47' 12.0192" N, 92° 6' 1.746" W
Date Breach Made Public: 
October 19, 2012
geo: 
Duluth, MN
United States
Records Breached: 

28 (No SSNs or financial information exposed)

Hackers were able to guess the answers to student account challenge questions.  The email account passwords of at least 28 students were reset and their account information was most likely accessed. The hackers may have been based in Beijing and most likely gathered the information needed to pass the challenge questions from information on the students' Facebook pages.

Source: 
Databreaches.net

MDwise


Location

Indianapolis, IN
United States
39° 46' 6.6576" N, 86° 9' 29.0664" W
Date Breach Made Public: 
January 11, 2012
geo: 
Indianapolis, IN
United States
Extra Info: 

People with Healthy Indiana Plan, Care Select, or Hoosier Healthwise memberships may have been affected.

Records Breached: 

2,700 (No SSNs or financial information reported)

An upgrade of MDwise's customer record computer system in February 2011 resulted in the leak of records from several organizations.  Anyone searching by name could have accessed the information online.  Members of Healthy Indiana Plan, Care Select, and Hoosier Healthwise may have had their names, addresses, Medicaid numbers, and doctors' names and addresses exposed online.  Administrators corrected the error as soon as it was detected.  

Source: 
PHIPrivacy.net

Salt Like City Police Department


Location

Salt Lake City, UT
United States
40° 45' 38.8044" N, 111° 53' 27.7692" W
Date Breach Made Public: 
February 3, 2012
geo: 
Salt Lake City, UT
United States
Records Breached: 

1,073 (No SSNs or financial information reported)

Hackers obtained police officer and non-police related civilian information from the Salt Lake City Police Department.  The attack was in response to a proposed Utah bill that would have criminalized the possession of graffiti tools with the intent to deface property.  The hackers did release the names, phone numbers, usernames, titles, email addresses, and hashed passwords of over 1,000 police officers.  The information of civilians was never released and the hackers eventually deleted their copies.

Source: 
Databreaches.net
Showing 71-80 of 680 results
Syndicate content


X

Sign In!

Loading