Chronology of Data Breaches
Security Breaches 2005 - Present

Posted Date: April 20, 2005
Updated Date: Current

Is this your first visit to our Chronology of Data Breaches?

  • Read our FAQ about what we define as a breached record, how we calculate the "total" records breached, our data sources, state breach notice laws, studies and other resources
  • Learn how to use our Chronology and take advantage of its sophisticated search and sort features
  • Get our RSS Feed to see when we add new breaches to the list
  • Scroll down to view the Chronology and/or to use our sort feature
  • Download a CSV file showing ALL breaches (A CSV file is a type of Excel spreadsheet that enables you to sort and analyze the breach listings in numerous ways)

If you have questions or need help with our Chronology of Data Breaches, please email admin@privacyrights.org


Click or unclick the boxes then select go.


Select features then click GO. To modify your search, check or uncheck the boxes and click GO.


Reset the checkboxes to the default "all selected."

Help Guide

display_id:page_1

display_id:page_1

Breach Total
899,587,955 RECORDS BREACHED
(Please see explanation about this total.)
from 4,977 DATA BREACHES made public since 2005
Date Made Publicsort ascending Name Entity Type
June 20, 2016 GoToMyPC
Santa Clara, California
BSO HACK

Unknown

"GoToMyPC, a service that helps people access and control their computers remotely over the Internet, is forcing all users to change their passwords, citing a spike in attacks that target people who re-use passwords across multiple sites."

"John Bennett, product line director at Citrix, said once the company learned about the attack it took immediate action. But contrary to previous published reports, there is no indication Citrix or its platforms have been compromised, he said.

“Citrix can confirm the recent incident was a password re-use attack, where attackers used usernames and passwords leaked from other websites to access the accounts of GoToMyPC users,” Bennett wrote in an emailed statement. “At this time, the response includes a mandatory password reset for all GoToMyPC users. Citrix encourages customers to visit the  GoToMyPC status page to learn about enabling two-step verification, and to use strong passwords in order to keep accounts as safe as possible. ”

More Information: http://krebsonsecurity.com/category/data-breaches/

 
Information Source:
Krebs On Security
records from this breach used in our total: 0
June 17, 2016 Bizmatics, Inc.
San Jose, California
MED HACK

Up to 150,000

"A healthcare provider in Colorado, Vincent Vein Center, is the latest organization to notify the U.S. Department of Health and Human Services (HHS) Office of Civil Rights (OCR) about a breach of protected health information stemming from a malicious hacker attacking Bizmatics’ data servers.

Bizmatics provides ambulatory software and electronic health records serving 15,000 healthcare providers."

Each customer/provider is reporting the specific numbers to Health and Human Services. We will be reporting the specific provider records breached as they are reported by HHS.

The information provided to date knowledge of these following entities have been reported as affected by the Bizmatic breach.

- Integrated Health Solutions- Pennsylvania

- ENT & Allergy Center- Arkansas

- Vincent Vein Center- Colorado

- Southeast Eye Institute/Eye Associates of Pinellas- Florida

- California Health  & Longevity Institute- California

- Pain Treatment Centers of America and Intervential Surgery Institute- Arkansas

As further information is provided, we will add to this list and make an effort to call out the third party breach in each individual breach post of the entity if and when it is provided.

 

 
Information Source:
Media
records from this breach used in our total: 0
June 16, 2016 Multi-Color Corporation
Batavia, Ohio
BSO PORT

Unknown

"An East Coast law firm representing Multi-Color in litigation.  As part of that representation, the law firm collected data from Multi-Color's systems,  which included HR recrods and information on all current US employees as of April 13, 2016; certain former employees and some employees of a predecessor company; and applicants.  The data was saved to an external hard drive and password protected.  The hard drive was delivered to the law firm and the password was separately emailed to the law firm."

"On May 16, 2016, the law firm informed Multi-Color that someone broke into the law firm's law officees on eithr May 14 or May 15 and stole several items, including the hard drive containing Multi-Color's data and the password."

The information compromised included all current US employees as of April 13, 2016, former employees and employees of a predecessor company all of which may have included names, Social Security numbers, addresses as well as dependent information.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62424

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 14, 2016 Sutter County Superior Court
Yuba City, California
GOV DISC

Unknown

"Private personal information of potentially thousands of people was unintentionally available on public access computers in the Sutter County Superior Courthouse on Monday.

The data breach occurred when a new case management system went live Monday morning. The system was taken down the same afternoon after an Appeal-Democrat reporter alerted Court Executive Officer Stephanie Hansel that sensitive and private information was viewable to the public.

For about six hours, anyone who searched for a criminal or traffic case on public access computers could view the defendant's Social Security number, birthday, driver's license number and home address. State court rules clearly say such data should be redacted by court clerks for the protection of privacy."

More Information: http://www.govtech.com/dc/articles/California-County-Courthouse-Suffers-...

 
Information Source:
Media
records from this breach used in our total: 0
June 14, 2016 Democratic National Committee
Washington, District Of Columbia
BSO HACK

Unknown

"Russian government hackers broke into the computer systems of the Democratic National Committee and accessed information about Democratic candidates as well as a database on opposition research against Donald Trump, POLITICO has confirmed."

"In late April, the DNC's IT department noticed some suspicious behavior and contacted DNC chief executive officer Amy Dacey, according to a DNC official. Dacey reached out to DNC lawyer Michael Sussmann, a partner at the Perkins Coie law firm and a former federal prosecutor specializing in cybercrimes. Sussmann called Shawn Henry, the president of cybersecurity firm CrowdStrike, to get his company's help. Within 24 hours of the first signals that something was amiss, CrowdStrike was brought in to install monitoring software to analyze the details of who was responsible. The DNC has also been in contact with the FBI since the hack was discovered."

"CrowdStrike designated two groups that gained access to the DNC's info. One, codenamed Cozy Bear, broke into the DNC last summer and had been monitoring the committee's emails and chats. The other group CrowdStrike dubbed Fancy Bear. It hacked into the DNC in April aiming to get opposition research files. The Fancy Bear breach is what tipped off DNC officials. Fancy Bear was able to gain access to all of the DNC's research staff computers."


More Information: http://www.politico.com/story/2016/06/russian-government-hackers-broke-into-dnc-servers-stole-trump-oppo-224315#ixzz4Bev49jq9

 
Information Source:
Media
records from this breach used in our total: 0
June 14, 2016 University of Connecticut
Storrs, Connecticut
EDU HACK

Unknown

"We are writing to inform you of a data security-related incident that may have involved your personal information.  On March 9, 2015, Information Technology (IT) staff in the School of Engineering detected that malicious software, or "malware", had been placed on a number of servers that are part of the School's technical infrastructure over a period of months, with penetration of the servers beginning as early as September 2013."

The information compromised included names, contact information, Social Security numbers, employment information, student academic information, research data and School of Engineering graduate level admissions data, credit card information, usernames and passwords.

The exact number of individuals affected has not yet been released.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62350

More Informationhttp://today.uconn.edu/2015/07/uconn-responds-to-data-breach-at-school-o...

 

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 14, 2016 Acer Service Corporation
San Jose, California
BSO HACK

Unknown


"We recently identified a security issue involving the information of certain customers who used our ecommerce site between May 12, 2015 and April 28, 2016, which resulted in unauthorized access by a third party."

The information compromised included names, addresses, card numbers, expiration dates, and three digit security code on the back of cards.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62344

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 13, 2016 Grand Sierra Resort and Casino
Reno, Nevada
BSO HACK

Unknown

"On or around September 29, 2015, the Grand Sierra Resort was contacted by law enforcement regarding an investigation into a potential compromise of payment card inforamtion used at food and retail locations at the Grand Sierra Resort.  We immediately began to cooperate with law enforcement and to investigate this matter.  Third party forensics investigators were retained to assist the Grand Sierra Resort.  On or around January 11, 2016, these investigators confirmed that certain guest payment card information for cards used at food and retail locations at the Grand Sierra Resort may have been compromised."

The information compromised included payment card information including card holder names, credit card numbers, credit card expiration dates, "Track 1 data and Track 2 data"

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62337

 

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 13, 2016 Momentum for Mental Health
San Jose, California
MED HACK

Unknown

"On June 3, 2016, Momentum was targeted by an e-mail scam called "spoofing". We discovered this incident within hours of it taking place. Nonetheless, it resulted in Momentum inadvertently making person information from your Form W-2 available to an unknown third party."

The information compromised included Social Security numbers, information, wage information, tax deductions.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62338

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 13, 2016 Twitter
San Francisco, California
BSO HACK

32 million is being reported

"Late last week, a password leak hit Twitter, and the company locked millions of user accounts as a result.

It was reported that the login credentials of more than 32 million Twitter users were compromised. According to LeakedSource, which indexes hacked credentials from data breaches, the credentials are being traded on the Dark Web for about 10 bitcoin a pop or a little under $6,000.

LeakedSource goes on to note that passwords are stored as plain text files, and many seem to be attached to Russian users. That detail indicates that the passwords were stolen from users, as opposed to through a hack into Twitter’s central systems.

In response to the leak, Twitter quickly initiated forced resets for many of its users."

More Information: http://www.pymnts.com/news/security-and-risk/2016/twitter-account-lockou...

 
Information Source:
Media
records from this breach used in our total: 0
June 8, 2016 WalMart Stores, Inc.
Bentonville, Arkansas
MED DISC

27,393

As reported by Health and Human Services unauthorized access/disclosure paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 7, 2016 Vincent Vein Center
Grand Junction, Colorado
MED HACK

2,250

This breach appears to be part of the third party vendor, Bizmatic breach. Bizmatic provides EMR/EHR software to 15,000 customers in the medical industry. The media report specifically states that Vincent Vein Centers breach included Social Security numbers as part of the breach.

More Information: http://www.healthcare-informatics.com/news-item/cybersecurity/close-1500...

As reported by Health and Human Services hacking/IT incident/electronic medical record. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 2,250
June 7, 2016 Grace Primary Care, PC
Huntsville, Tennessee
MED HACK

6,853

As reported by Health and Human Services hacking/IT incident/network. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 7, 2016 State Farm Mutual Automobile Insurance Company
Bloomington, Illinois
BSF INSD

Unknown

" On January 21, 2016, State Farm opened an investigation related to employees of a State Farm independent contractor agent in Chino Hills, CA.  The investigation determined there was misappropriation of customer payments that were either diverted or not correctly applied to customers' accounts."

The information compromised included "customer funds, misuse of some customer financial cards, and accessing and changing some customers' contact information". Some information was used to add additional insurance coverage without the policyholders' knowlede and consent.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62237

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 6, 2016 Empathia Inc
Waukesha, Wisconsin
BSO HACK

Unknown

"On January 30 2016, we discovered spam files on one of our data servers.  We removed the spam and immediately launched an investigation to determine the nature of the access and what data may have been stored on that server. We also hired a third party forensic investigator to the supplement our investigation. The forensic investigation revealed that the spam spread to a second domain on the same server. That contained a file with your information which you provided to Empathia when you submitted a request for a credit check in 2003 or 2004."

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62197

 
Information Source:
California Attorney General
records from this breach used in our total: 0
June 3, 2016 The University of New Mexico
Albuquerque, New Mexico
MED DISC

2,827

As reported by Health and Human Services unauthorized access/disclosure paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 3, 2016 The Vein Doctor
Liberty, Missouri
MED HACK

3,000

As reported by Health and Human Services hacking/IT incident/electronic medical records, network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 1, 2016 Allen Dell P.A.
Tampa, Florida
BSO HACK

2,500

As reported by Health and Human Services hacking/IT incident/network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 1, 2016 ENT & Allergy Center
Fayetteville, Arkansas
MED HACK

16,200

This specific breach, as reported, is part of a larger breach of the company Bizmatics which provides EHR/EMR software solutions to 15,000 healthcare providers.

"The company has not disclosed exactly how many of its clients were affected by the breach, although a number of healthcare providers have now issued breach notifications to patients and have informed the Department of Health and Human Services’ Office for Civil Rights of the breach."

This specific breach, as reported, is part of a larger breach of the company Bizmatics which provides EHR/EMR software solutions to 15,000 healthcare providers.

"The company has not disclosed exactly how many of its clients were affected by the breach, although a number of healthcare providers have now issued breach notifications to patients and have informed the Department of Health and Human Services’ Office for Civil Rights of the breach."

More Information: http://www.hipaajournal.com/integrated-health-solutions-notifies-20k-pat...

As reported by Health and Human Services hacking/IT incident/electronic medical records. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

Statment from company: http://entnwa.com/patient-resources/patient-forms/

 
Information Source:
Government Agency
records from this breach used in our total: 0
June 1, 2016 Washington Redskins
Ashburn, Virginia
BSO PORT

Reported as thousands, not specific number provided currently

"A laptop containing the medical records of thousands of NFL players was stolen from the car of a Washington Redskins trainer last month, the team said in a statement on Wednesday, confirming a story first reported by Deadspin."

"According to a letter from the NFLPA that was obtained by Deadspin, the stolen medical records were of every player who went through the NFL scouting combine from 2004 through 2016, as well as current Redskins players. The backpack also contained a zip drive and hard copies of the medical records, the letter said."

More Information: http://espn.go.com/nfl/story/_/id/15884597/laptop-stolen-washington-reds...

 
Information Source:
Media
records from this breach used in our total: 0
May 31, 2016 Washington DC VA Medical Center
Washington, District Of Columbia
MED PHYS

1,062

As reported by Health and Human Services theft/paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 31, 2016 Verity Health System
Redwood City, California
MED HACK

Unknown

"May 23, 2016, Verity Health System was targeted with an isolated email phishing scam in which a scammer impersonated a Verity executive and requested that certain employee information be sent via email. This scam did not affect any patient information or the delivery of healthcare to our patients."

The information breached included current and former employees information on their W2 form.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-62088

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 31, 2016 MySpace
Santa Monica, California
BSO HACK

Over 360 million usernames and passwords

My Space is notifying individuals of a large data breach of usernames and passwords on their system. The number of passwords compromised is being reported as over 360 million. These usernames and passwords were exposed due to "unsalted SHA-1 hashes" that allowed hackers to run certain numbers they can obtain with a cracking server, which can process millions of SHA-1 calculations per second.

The breach has been reported to only be usernames and passwords.

Time Inc. who owns MySpace has confirmed the breach.

More Information: http://www.usatoday.com/story/tech/2016/05/31/360-million-myspace-accoun...

 
Information Source:
Media
records from this breach used in our total: 0
May 26, 2016 Orchid MPS Holdings, LLC/Welfare Benefit Plan
Holt, Missouri
MED DISC

771

As reported by Health and Human Services unauthorized access/disclosure paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 25, 2016 Stamford Podiatry Group PC
Stamford, Connecticut
MED HACK

40,491

"Connecticut-based Stamford Podiatry Group is notifying patients that medical and personal information was compromised in a recent security incident.

How many victims? 40,491

What type of information? Names, medical history and treatment information, name, social security numbers, dates of birth, gender, marital status, addresses, phone numbers, email addresses, names of treating and referring doctors, and insurance coverage information were all compromised in the breach.

What happened? On April 14 officials discovered that an unauthorized individual had covert access to the group's systems including its electronic database between February 22 and April 14."

More Information: http://www.scmagazine.com/data-of-40000-stamford-podiatry-group-patients...

As reported by Health and Human Services hacking/IT incident/network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 

 
Information Source:
Media
records from this breach used in our total: 40,491
May 25, 2016 California Health & Longevity Institute
Westlake Village, California
MED HACK

4,386

This specific breach, as reported, is part of a larger breach of the company Bizmatics which provides EHR/EMR software solutions to 15,000 healthcare providers.

"The company has not disclosed exactly how many of its clients were affected by the breach, although a number of healthcare providers have now issued breach notifications to patients and have informed the Department of Health and Human Services’ Office for Civil Rights of the breach."

More Information: http://www.hipaajournal.com/integrated-health-solutions-notifies-20k-pat...

As reported by Health and Human Services hacking/IT incident/electronic medical records, network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 

Note: Media report states 4,836 for purposes of our reporting we are utilizing the number that HHS provided which is 4,386.

 

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 25, 2016 Integrated Health Solutions PC
Easton, Pennsylvania
MED HACK

19,776

This specific breach, as reported, is part of a larger breach of the company Bizmatics which provides EHR/EMR software solutions to 15,000 healthcare providers.

"The company has not disclosed exactly how many of its clients were affected by the breach, although a number of healthcare providers have now issued breach notifications to patients and have informed the Department of Health and Human Services’ Office for Civil Rights of the breach."

Integrated Health Solutions is telling its members that names, addresses, Social Security numbers and health visit information may have been compromised.

More Information: http://www.hipaajournal.com/integrated-health-solutions-notifies-20k-pat...

As reported by Health and Human Services hacking/IT incident/electronic medical records, network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Media
records from this breach used in our total: 19,776
May 24, 2016 Keystone Rural Health Consortia, Inc.
Emporium , Pennsylvania
MED PHYS

800

As reported by Health and Human Services theft/electronic medical records/paper/films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 24, 2016 Melanie Witte (counsel for Berkeley Endocrine Clinic)
Berkeley, California
MED DISC

1,370

As reported by Health and Human Services unauthorized access/disclosure email. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 24, 2016 A&A Ready Mixed Concrete, Inc.
Newport Beach, California
BSO HACK

Unknown

"We are contacting you regarding a data security incident that occurred on Monday, May 16th, 2016, at the Company. It appears the targeted data involved 2015 W2 information of employees which could potentialy become available to unknown individuals.  As a result, your person information may have been exposed to others.  Please be assured we have taken every step necessary to address the incident, and are fully committed to protecting your information."

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61962

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 24, 2016 Lewis-Palmer School District 38
Monument, Colorado
EDU DISC

2,000 students in the district

Officials at the Lewis-Palmer were confronted by parents regarding their use of student ID numbers as part of the districts Google Apps for Education (GAFE) in order to connect to the districts Infinite Campus.  "GAFE is a hosting solution by Google to incorporate Google mail, calendar and chat services. Student emails in the district use the student's ID in an @lewispalmer.org format."

Several parents came forward and notified the district of how easily their information was breached.

"After walkding through the process with several students and parents using their accounts, Complete Colorado discovered that anyone could easily access the personal information of any student in the district, including names, addresses, and phone numbers for students, parents, siblings and emergency contacts; schedules; attendance records; grades; locker numbers and combinations; transportation details, including where and when bus pickups take place; and health records."

The district has yet to notify parents of the issue.

More Information: http://completecolorado.com/pagetwo/2016/05/24/probable-security-breach-...

 
Information Source:
Media
records from this breach used in our total: 0
May 23, 2016 Berkeley Endocrine
Berkeley, California
MED HACK

Unknown

"On April 22, 2016, my office was subject to a spam email which we believe went to many patients. Though no patient information was affected by that correspondence, we sent a notification email to al individuals on our email list, informing them of the spam. Inadvertently, the recipient list for the notificaation email on April 22, 2016 was not hidden."

The information compromised included first and last names, email addresses.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61958

 

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 20, 2016 Aflac
Columbus, Georgia
MED DISC

930

As reported by Health and Human Services unauthorized access/disclosure paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 20, 2016 Coordinated Health Mutual, Inc
Columbus, Ohio
MED DISC

591

As reported by Health and Human Services unauthorized access/disclosure paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 20, 2016 Tallahassee Memorial HealthCare, Inc
Tallahassee, Florida
MED HACK

505

As reported by Health and Human Services hacking/IT incident other. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 20, 2016 O'Charley's Restaurant and Bar
Nashville, Tennessee
BSO HACK

Unknown

O'Charley's Restaurant and Bar notified customers of data breach when a third party security firm discovered unauthorized access to their payment card system. Between March 19, 2016 and April 8, 2016 customers who used their debit or credit card information could be the target of identity theft.

The information compromised included data found on the magnetic strip of the card which would include the cardholder names and card numbers.

The following locations were potentially compromised. O'Charley's Restaurants locatd at 930 Windham Court, Boardman Ohio and 2077 Interchange Drive, Erie Pennsylvania.

The number of debit/credit cards affected has not yet been released.

For those with questions they can call If you have questions, please call (855) 907-3245 from 9:00 a.m. to 6:00 p.m. ET Monday - Friday.

More Information: http://www.11alive.com/money/personal-finance/georgia-ag-olens-warns-res...

Release from the company: http://www.ocharleys.com/protectingourguests

 
Information Source:
Media
records from this breach used in our total: 0
May 19, 2016 Emergency Room Associates dba- Emergency Medicine Associates
Tuscon, Arizona
MED PHYS

1,067

As reported by Health and Human Services theft paper films. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 19, 2016 Milwaukee Bucks
Milwaukee, Wisconsin
BSO HACK

Unknown

The Milwaukee Bucks have notified players of a data breach when someone posing as the team's president sent a spoofing email requesting information on the players W2 forms.

The information compromised included names, addresses, Social Security numbers, compensation figures and dates of birth.

More Information: http://www.usatoday.com/story/sports/nba/bucks/2016/05/19/milwaukee-buck...

 
Information Source:
Media
records from this breach used in our total: 0
May 18, 2016 The Paper Works
Paradise, California
BSO PORT

Unknown

The Paper Works notified customers of a data breach when a laptop and a computer were stolen from their office that included personal information of customers.

The information compromised includeed names, addresses, Social Security numbers, spouse and dependent information listed on tax filings.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61876

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 17, 2016 Complete Chiropractic & Bodywork Therapies
Ann Arbor, Michigan
MED HACK

4,082

As reported by Health and Human Services hacking/IT incident/desktop computer/network server. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 17, 2016 San Juan County New Mexico
Aztec, New Mexico
MED HACK

12,500

As reported by Health and Human Services hacking/IT incident/desktop computer. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 16, 2016 Associates in EyeCare, P.S.C.
Somerset, Kentucky
MED PORT

971

As reported by Health and Human Services theft/laptop/other portable electronic device. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 16, 2016 Surgical Care Affiliates
Birmingham, Alabama
MED PORT

9,009

As reported by Health and Human Services theft/laptop. No specific information as to what information was compromised as provided by health and human services.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
Government Agency
records from this breach used in our total: 0
May 16, 2016 Solano Community College
Fairfield, California
EDU HACK

Unknown

"On April 28, 2016, we learned that a "phishing" email was sent to an employee who responded to the email, thinking that it was a legitimate request. When we learned of this, we immediately secured the email account, reset passwords and began an investigation.  We also notified the Solano County Sheriff's Office which is working with the college Information Department and the Solano County Sheriff's Office Computer Crime Task Force in the investigation of this matter."

The information compromised included names, addresses, Social Security numbers and salary information.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61842

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 16, 2016 Flurish Inc.dba LendUp
San Francisco, California
BSF DISC

Unknown

"Earlier this year during a routine examination, we discovered that personal information for a small subset of visitors to our website had been made available to third-party companies.  We place on our website widgets, beacons, and analytics trackers from third-party companies to provide services to us and our customers related to device authentication, site functionality, advertising, and marketing.  Our examination showed that personal information could have been made available to these third-party companies, for a small number of customers, as early as 2012."

The information compromised included first and last names, email addresses, telephone numbers, home addresses, dates of birth, and Social Security numbers.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61852

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 16, 2016 Noodles and Company
Ann Arbor, Michigan
BSO HACK

Unknown

Noodles & Company is investigating a data breach of their payment card systems at some of their locations.

“We are currently investigating some unusual activity reported to us Tuesday, May 16, 2016 by our credit card processor. Once we received this report, we alerted law enforcement officials and we are working with third party forensic experts. Our investigation is ongoing and we will continue to share information.”

The company operates 500 stores in 35 U.S states. The number of credit/debit cards affected and the locations that were compromised have not yet been released.

More Information: http://krebsonsecurity.com/2016/05/noodles-company-probes-breach-claims/

 
Information Source:
Krebs On Security
records from this breach used in our total: 0
May 16, 2016 Poway Unified School District
Poway , California
EDU DISC

70,000

The Poway Unified School District notified parents of a data breach when the district inadvertently sent information on 70,000 individuals, including students to a parent who requested information on their specific child only.

"The information released did not include Social Security numbers,” the statement said. However, it included directory information and district-based test scores, some of which are protected information under the Family Educational Rights and Privacy Act.”

The information compromised included children's names, nicknames, addresses, phone numbers, hearing and vision exam results, dates of birth, language fluency, academic test results and occupation of parents.

More Information: http://www.sandiegouniontribune.com/news/2016/may/16/poway-data-breach/?...

 
Information Source:
Media
records from this breach used in our total: 0
May 16, 2016 Zocdoc, Inc.
New York, New York
MED DISC

Unknown

"As you know, Zocdoc allows you to book appointments with doctors who list their medical or dental practices on our service.  Each practice registered with Zocdoc receives usernames which allow staff members to access Zocdoc's system (the "Provider Dashboard") to view appointments and other information you provide when you book an appointment. In June 2015, we learned of programming errors in the processes responsible for managing username access the Provider Dashboard, and therefore potentially view your personal information, after their usernames were removed, deleted or otherwise limited."

The information compromised included names, email addresses, phone numbers, Social Security numbers, appointment history, insurance member ID and other medical history.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61838

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 15, 2016 California Correctional Health Care Services
Elk Grove, California
MED PORT

40,000

"On April 2, 2016 California Correctional Health Care Services (CCHCS) identified a potential breach of your Personally Identifiable Information and Protected Health Information that occurred on February 25, 2016.  An unencrypted laptop was stolen from a CCHCS workforce member's personal vehicle.  The laptop was password protected in accordance with state protocol."

The information compromised included confidential medical, mental health, and custodial information between 1996 and 2014.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61830

UPDATED (6/20/2016): The number of records was updated per Health and Human Services database.

More Information: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf;jsessionid=9BF4AF...

 
Information Source:
California Attorney General
records from this breach used in our total: 0
May 13, 2016 City College of San Francisco
San Francisco, California
EDU HACK

Unknown

"On April 15, 2016, we learned that an employee had responded to a "phishing" email thinking it was a legitimate request.  When we learned of this, we immediately secured the email account, reset passwords and began an investigation of the incident."

The information compromised included student information including names, addresses, Social Security numbers and additional information included in an application for financial aid.

More Information: http://oag.ca.gov/ecrime/databreach/reports/sb24-61821

 
Information Source:
California Attorney General
records from this breach used in our total: 0
Breach Total
899,587,955 RECORDS BREACHED
(Please see explanation about this total.)
from 4,977 DATA BREACHES made public since 2005

Pages

Showing 1-50 of 4977 results