======================================================================== Open Security Foundation - DataLossDB Weekly Summary Week of Sunday, October 17, 2010 20 Incidents Added. ======================================================================== DataLossDB is a research project aimed at documenting known and reported data loss incidents world-wide. The Open Security Foundation asks for contributions of new incidents and new data for existing incidents. For any questions about the project or the data contained within this email or the website (http://www.datalossdb.org), please contact us at curators_at_private ======================================================================== DataLossDB News/Updates No news this week! ======================================================================== Incidents Added Reported Date: 2010-10-21 Summary: 27,000 usernames and passwords from online student portal posted on Internet Organizations: Thames Valley District School Board http://datalossdb.org/incidents/3218 --------------------- Reported Date: 2010-10-20 Summary: Inmates criminal history, medical evaluations and Social Security numbers were found discarded in dumpster Organizations: California Men’s Colony, Peter Ferguson http://datalossdb.org/incidents/3219 --------------------- Reported Date: 2010-10-20 Summary: Lost portable drive exposes 280,000 names, addresses and health information Organizations: Keystone Mercy Health Plan http://datalossdb.org/incidents/3209 --------------------- Reported Date: 2010-10-19 Summary: Stolen digital camera containing newborn baby pics with id tags with names, addresses, dates of birth, medical insurance numbers Organizations: University of Arkansas for Medical Sciences http://datalossdb.org/incidents/3210 --------------------- Reported Date: 2010-10-18 Summary: Temporary employee stole county workers names and Social Security numbers Organizations: Milwaulkee County Human Resources http://datalossdb.org/incidents/3201 --------------------- Reported Date: 2010-10-17 Summary: Third party contractor downloads patients medical details to USB then incorrectly emails the records to wrong person Organizations: Health Service Executive http://datalossdb.org/incidents/3199 --------------------- Reported Date: 2010-10-16 Summary: Financial documents of about 900 patients stolen from courier Organizations: University of California Davis, UltraEx Courier http://datalossdb.org/incidents/3205 --------------------- Reported Date: 2010-10-15 Summary: Loan company improperly disposes customer information exposes names, Social Security numbers, Organizations: Payday Loan Store of Illinois http://datalossdb.org/incidents/3215 --------------------- Reported Date: 2010-09-15 Summary: Stolen computers from chiropractic center contain PHI of 2,000 patients Organizations: Ault Chiropractic Center http://datalossdb.org/incidents/3202 --------------------- Reported Date: 2010-08-16 Summary: Computer flash drive lost, exposing 1,711 patients’ names, dates of birth and medical information Organizations: Chattanooga Family Practice Associates, PC http://datalossdb.org/incidents/3208 --------------------- Reported Date: 2010-07-31 Summary: Psychologist recycles 23 boxes of patient records improperly, exposing patient names, contact info, SSN, credit card numbers and medical history Organizations: Carolina Center for Development and Rehabilitation http://datalossdb.org/incidents/3214 --------------------- Reported Date: 2010-07-12 Summary: Stolen laptop exposed 2,739 patient names, DOB and medical information Organizations: Curtis R. Bryan MD http://datalossdb.org/incidents/3213 --------------------- Reported Date: 2010-07-01 Summary: Social Security numbers exposed through administration error in HR department Organizations: ING U.S. Financial Services, ReliaStar Life Insurance Company http://datalossdb.org/incidents/3203 --------------------- Reported Date: 2010-06-02 Summary: Hospital mails 1,000 statements to wrong patients due to misprogramming of mailing equipment Organizations: Children's Hospital & Research Center at Oakland http://datalossdb.org/incidents/3206 --------------------- Reported Date: 2010-05-31 Summary: 56 records containing personal and diagnostic information left on the Tube Organizations: North West London Hospitals NHS Trust http://datalossdb.org/incidents/3220 --------------------- Reported Date: 2010-05-10 Summary: Employee's laptop stolen from car, exposing 22 patients information Organizations: Alliance Inc. http://datalossdb.org/incidents/3204 --------------------- Reported Date: 2010-04-17 Summary: File cabinet given away with 12,000 patients medical information Organizations: Blue Cross Blue Shield of Rhode Island http://datalossdb.org/incidents/3216 --------------------- Reported Date: 2010-01-19 Summary: SQL injection exposes 50,000 youth names, addresses, dates of birth and email addresses Organizations: RUF Travel http://datalossdb.org/incidents/3211 --------------------- Reported Date: 2009-11-24 Summary: Desktop computer stolen exposing name, DOB and medical information of 857 patients Organizations: David I. Cohen, MD http://datalossdb.org/incidents/3212 --------------------- Reported Date: 2007-12-12 Summary: Missing computer disk exposes 16,000 childrens names, addresses, and dates of birth Organizations: St Leonard's Hospital http://datalossdb.org/incidents/3217 --------------------- ======================================================================== Blotter Posts Added: 2010-10-25 Title: Widespread Confusion over Protecting Privacy http://feeds.pcworld.com/click.phdo?i=99a52cc70ea95f7f067f14dfc7294f76 --------------------- Added: 2010-10-25 Title: Texas insider sentenced to 15 years for medical ID theft http://feedproxy.google.com/~r/SCMagazineHome/~3/1Y9E9GT5AUA/ --------------------- Added: 2010-10-25 Title: Copy machines spill identity secrets http://www.cbc.ca/canada/story/2010/10/18/photocopier-security.html?ref=rss --------------------- Added: 2010-10-25 Title: Utah joins effort to safeguard personal information http://www.sltrib.com/sltrib/money/50495490-79/credit-information-identity-com.html.csp --------------------- Added: 2010-10-18 Title: Former county temp charged with identity theft http://www.jsonline.com/news/crime/105185304.html --------------------- Added: 2010-10-18 Title: Data theft by cybercriminals biggest loss for businesses, survey reveals http://www.computerweekly.com/Articles/2010/10/18/243378/data-theft-by-cybercriminals-biggest-loss-for-businesses-survey-reveals.htm --------------------- Added: 2010-10-18 Title: Fraud awareness week launches, with more than nine out of ten people considering themselves to be at risk of identity fraud http://www.scmagazineuk.com/fraud-awareness-week-launches-with-more-than-nine-out-of-ten-people-considering-themselves-to-be-at-risk-of-identity-fraud/article/181152/ --------------------- Added: 2010-10-18 Title: Annual cost of identity theft is £2.7bn http://www.independent.co.uk/news/uk/crime/annual-cost-of-identity-theft-is-16327bn-2109431.html --------------------- _______________________________________________ Dataloss Mailing List (dataloss_at_private) CREDANT Technologies, a leader in data security, offers advanced data encryption solutions. Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently across your enterprise to ensure regulatory compliance. http://www.credant.com/stopdataloss ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Wed Oct 27 2010 - 01:08:25 PDT
This archive was generated by hypermail 2.2.0 : Wed Oct 27 2010 - 01:16:39 PDT