The Green Sheet Online Edition
July 11, 2011 • Issue 11:07:01
Breaches across America
Here is a compilation of major data breaches that have occurred since our last report in The Green Sheet, Sept 13, 2010, issue 10:09:01.
San Francisco, March 3, 2011 - Backup tapes containing 300,000 records of names, Social Security numbers (SSNs), driver's licenses and credit card numbers were stolen from the car of a Cord Blood Registry employee.
Rancho Cordova, March 15, 2011 - Nine data servers that stored sensitive health information went missing from Health Net Inc.'s data center. The servers contained the personal information of 1.9 million current and former policyholders; names, addresses, health information, SSNs and financial information were compromised.
San Francisco, April 14, 2011 - Blog website WordPress.com experienced a breach that exposed 18 million records, including source code, application protocol interface keys and social media passwords. No customer phone numbers or financial information was reportedly compromised.
Aberdeen, Jan. 24, 2011 - A backup tape was stolen from the car of a Grays Harbor Pediatrics employee. The device was used to store 12,000 patient records, containing names, SSNs, insurance details, driver's license information, immunization records, medical history forms, previous doctor records and patient medical records.
Austin, April 11, 2011 - The Texas Comptroller's Office reported the possible compromise of 3.5 million records from three Texas agencies. The records contained names, SSNs, addresses, dates of birth and driver's license numbers. One of two class-action lawsuits filed on behalf of the 3.5 million victims seeks a $1,000 statutory penalty for each affected individual.
Irving, May 11, 2011 - About 90 PIN pads in Michaels Stores Inc. locations across 20 states were found to have been tampered with. It is estimated that the transaction information of tens of thousands of Michaels customers was compromised. Subsequently, two class-action lawsuits were filed against Michaels.
South Bend, Nov. 19, 2010 - 1st Source Bank's third-party payment processor was breached. An unknown number of cust-omer account numbers and expiration dates were exposed.
Madison, Dec. 10, 2010 - The University of Wisconsin - Madison reported that student identification (ID) information from 60,000 former students was compromised. Hackers got away with student ID photos embedded with SSNs, ID numbers and cardholder names.
Jacksonville, Oct. 15, 2010 - The University of North Florida experienced a breach of 106,884 records, including 52,853 SSNs. The information also included names, ACT and SAT scores, and birth dates.
Fort Lauderdale, Nov. 10, 2010,br> - A former employee at a doctor's office at Holy Cross Hospital was convicted of stealing patient files and sentenced to 24 months in prison. From the 44,000 files stolen, there have been 1,500 confirmed victims of identity theft.
New Orleans, Jan. 18, 2011 - A Tulane University-issued laptop was stolen from an employee's car. The laptop contained tax information from 10,000 employees, students and others. The information included names, SSNs, salary information and home addresses.
New York, Feb. 12, 2011 - Backup tapes containing the health records from 1.7 million patients were stolen from an unsecured and unlocked van that serviced Jacobi Medical Center, North Central Bronx Hospital, Tremont Health Center, and Gunhill Health Center.
New York, April 27, 2011 - A breach of several Sony Corp. networks resulted in 101.6 million customer account numbers compromised. Of those account numbers, 12 million were unencrypted credit card account numbers and 10,700 were bank account numbers. The investigation into the breach is ongoing.
New York, June 9, 2011 - Hackers managed to access the information of approximately 1 percent of Citibank's 21 million users. Customer names, account numbers and contact information were exposed. Security codes and birth dates were apparently not exposed. The breach occurred sometime in May 2011.
Randolph, May 20, 2011 - A courier was attacked on May 9. The attacker stole the courier's bag containing the transaction records of 800 HarborOne Credit Union customers. The records included names, addresses, account numbers and other information on checks processed at the credit union.
Philadelphia, March 9, 2011 - A former Penn Mutual Life Insurance employee stole an unknown amount of customer information, including names, SSNs, addresses, dates of birth and bank account information. Penn Mutual was unable to determine which customers were affected; the former employee reportedly was part of an identity theft ring.
(Source: Privacy Rights Clearinghouse)
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.