======================================================================== Open Security Foundation - DataLossDB Weekly Summary Week of Sunday, May 1, 2011 28 Incidents Added. ======================================================================== DataLossDB is a research project aimed at documenting known and reported data loss incidents world-wide. The Open Security Foundation asks for contributions of new incidents and new data for existing incidents. For any questions about the project or the data contained within this email or the website (http://www.datalossdb.org), please contact us at curators_at_private ======================================================================== DataLossDB News/Updates No news this week! ======================================================================== Incidents Added Reported Date: 2011-05-08 Summary: Ex-employees sued for allegedly downloading and taking more than 2,000 mortgage loan customers' names, addresses, phone numbers, Social Security numbers, bank account numbers, W-2's, and other records Organizations: Huntington National Bank http://datalossdb.org/incidents/3682 --------------------- Reported Date: 2011-05-05 Summary: Students' email addresses and ID numbers accessed Organizations: Central Oregon Community College http://datalossdb.org/incidents/3688 --------------------- Reported Date: 2011-05-05 Summary: Doctor misused patient information to open lines of credit Organizations: Lockerman Family Chiropractic http://datalossdb.org/incidents/3678 --------------------- Reported Date: 2011-05-04 Summary: PIN pad tampering at stores results in dozens of cases of card fraud Organizations: Michaels Stores, Inc. http://datalossdb.org/incidents/3677 --------------------- Reported Date: 2011-05-04 Summary: 20 boxes of documents containing personal, financial, and medical information fell off truck and scattered in wind Organizations: Baker Moving and Storage, Rodney Johnson http://datalossdb.org/incidents/3676 --------------------- Reported Date: 2011-05-03 Summary: 5,994 patients' names, addresses, hospital account numbers, medical record numbers, diagnostic codes and treatment codes on laptop stolen from employee vehicle Organizations: Speare Memorial Hospital http://datalossdb.org/incidents/3660 --------------------- Reported Date: 2011-05-02 Summary: Employee stole patient identity information for fraudulent purposes Organizations: Woman To Woman Healthcare http://datalossdb.org/incidents/3666 --------------------- Reported Date: 2011-05-02 Summary: 250,000 show applicants' names, dates of birth, email addresses, zip code, phone numbers accessed Organizations: X Factor http://datalossdb.org/incidents/3663 --------------------- Reported Date: 2011-05-02 Summary: Customer email addresses accessed by hacker Organizations: Unknown Organization, Best Buy http://datalossdb.org/incidents/3662 --------------------- Reported Date: 2011-05-02 Summary: 24.6 million customer dates of birth, email addresses and phone numbers, including 12,700 non-U.S. credit or debit card numbers and expiration dates and about 10,700 direct debit records including bank account numbers accessed by hacker Organizations: Sony Online Entertainment, Sony Corporation http://datalossdb.org/incidents/3661 --------------------- Reported Date: 2011-04-28 Summary: Teacher login passwords stolen, grades changed at three high schools Organizations: Seattle Public Schools, Ballard High School, Ingraham High School, Chief Sealth http://datalossdb.org/incidents/3687 --------------------- Reported Date: 2011-04-28 Summary: Personal and medical information of Guantanamo detainees revealed in data dump Organizations: United States Department of Defense http://datalossdb.org/incidents/3665 --------------------- Reported Date: 2011-04-22 Summary: 12,000 employees notified that their identity information may have been acquired Organizations: Schield Family Companies, Peachtree Doors and Windows, Inc., Weather Shield, Vetter, Crestline http://datalossdb.org/incidents/3670 --------------------- Reported Date: 2011-04-20 Summary: Call center employee accessed customers' names and credit card information without authorization Organizations: Netflix, Inc. http://datalossdb.org/incidents/3680 --------------------- Reported Date: 2011-04-07 Summary: Compromised customer login used to access names, addresses, phone numbers and Social Security numbers Organizations: Unknown Organization, Merlin Information Services http://datalossdb.org/incidents/3679 --------------------- Reported Date: 2011-03-30 Summary: Laptop stolen from contractor's car contained personal, health, and financial information of 1700 individuals seeking to adopt children Organizations: Trisha Elaine Cordova, Catholic Social Services http://datalossdb.org/incidents/3675 --------------------- Reported Date: 2011-03-04 Summary: 20,744 patients' personal and account information, including some SSN, credit card numbers, and dental images, on stolen equipment Organizations: Rape & Brooks Orthodontics, P.C., Luther T. Cale & W. Gregory Rape, Orthodontics, PC, St. Clair Orthodontics, LLC , Luther T. Cale, DMD Orthodontics, PA http://datalossdb.org/incidents/3674 --------------------- Reported Date: 2010-07-07 Summary: 937 patients' names and email addresses exposed in email error. Organizations: Aramark Healthcare Support Services, Inc., Sinai Hospital of Baltimore, Inc. http://datalossdb.org/incidents/3684 --------------------- Reported Date: 2010-07-06 Summary: 29,808 patients' protected health information, names and addresses were on a lost compact disc Organizations: California Department of Healthcare Service, Care 1st Health Plan http://datalossdb.org/incidents/3664 --------------------- Reported Date: 2010-06-09 Summary: 2,300 patients' names, dates of birth, Social Security numbers, medical information, and insurance information were laptop stolen from doctor's home. Organizations: Nihal Saran, MD http://datalossdb.org/incidents/3685 --------------------- Reported Date: 2010-05-22 Summary: 4,083 patients' names, dates of birth, and social security numbers were in a binder and clipboard that went missing from a file room. Organizations: North Texas Health Care System (Veterans Administration) http://datalossdb.org/incidents/3683 --------------------- Reported Date: 2010-03-11 Summary: Stolen flash drives contained 26,152 students' names, birthdates, health record location codes Organizations: Washoe County School District http://datalossdb.org/incidents/3672 --------------------- Reported Date: 2010-03-04 Summary: Current and former employees' names, addresses, and Social Security numbers on stolen laptop Organizations: Franciscan Health System, Franciscan Medical Group http://datalossdb.org/incidents/3671 --------------------- Reported Date: 2009-07-29 Summary: Employee information leaked via "Winny" P2P program Organizations: Sumitomo Life Insurance http://datalossdb.org/incidents/3668 --------------------- Reported Date: 2009-06-17 Summary: Financial and sensitive case notes on nine families applying for assistance on stolen laptop. Organizations: Health Service Executive, Roscommon Primary/Community and Continuing Care Department http://datalossdb.org/incidents/3667 --------------------- Reported Date: 2009-03-05 Summary: Documents were not shredded potentially leading to personal data exposure Organizations: State Farm Insurance http://datalossdb.org/incidents/3669 --------------------- Reported Date: 2008-07-20 Summary: Former employee accessed clients' personal data without authorization Organizations: New York Life Insurance Co http://datalossdb.org/incidents/3673 --------------------- Reported Date: 2006-10-20 Summary: Laptop stolen from faculty member while traveling in Spain contained names, university IDs and grades. Organizations: University of Minnesota http://datalossdb.org/incidents/3681 --------------------- ======================================================================== Blotter Posts Added: 2011-05-07 Title: Sony provides a $1 million insurance policy to PSN users http://www.examiner.com/console-game-in-national/sony-provides-a-1-million-insurance-policy-to-psn-users --------------------- Added: 2011-05-06 Title: Feds probing multistate ID theft ring http://www.democratandchronicle.com/article/20110506/NEWS01/110506024/1168/RSS --------------------- Added: 2011-05-06 Title: News: Stringer pledges $1m identity theft insurance policy http://www.gamesindustry.biz/articles/2011-05-06-stringer-pledges-USD1m-identity-theft-insurance-policy --------------------- Added: 2011-05-05 Title: Woman gets 20 years in ID theft http://feedproxy.google.com/~r/staradvertiser_rss/~3/-fEvuALSEOc/20110505__Woman_gets_20_years_in_ID_theft.html --------------------- Added: 2011-05-05 Title: Anonymous Faces Identity Dilemma Over Sony Hack http://blogs.forbes.com/andygreenberg/2011/05/05/anonymous-faces-identity-dilemma-over-sony-hack/?utm_source=allactivity&utm_medium=rss&utm_campaign=20110505 --------------------- Added: 2011-05-05 Title: Hearing on The Threat of Data Theft to American Consumers http://www.bespacific.com/mt/archives/027180.html --------------------- Added: 2011-05-05 Title: Kailua woman gets 20 years for ID theft, credit fraud http://www.staradvertiser.com/news/breaking/121290733.html --------------------- Added: 2011-05-05 Title: Obama ID protection plan may be best alternative to data theft http://www.itworld.com/security/161919/obama-id-protection-plan-may-be-best-alternative-data-theft --------------------- Added: 2011-05-04 Title: Sony breach prompts House data theft hearing http://feedproxy.google.com/~r/SCMagazineHome/~3/5myM-iywUGA/ --------------------- Added: 2011-05-04 Title: Lawmakers look to statute of limitations on ID theft http://www.lvrj.com/r?19=961&43=192612&44=121123059&32=4051&7=204882&40=http%3A%2F%2Fwww.lvrj.com%2Fnews%2Flawmakers-look-to-statute-of-limitations-on-id-theft-121123059.html --------------------- Added: 2011-05-03 Title: 'X Factor' Contestants Watch Out: Your Identity Might Get Stolen http://feedproxy.google.com/~r/b5media/crushable/~3/q0JYtEEuPe4/ --------------------- Added: 2011-05-02 Title: City's computer disposal might pose data-theft risks http://www.dispatch.com/live/content/local_news/stories/2011/05/02/computer-disposal-might-pose-risks.html?sid=101 --------------------- Added: 2011-05-02 Title: State’s offer of free credit monitoring services overdue http://www.dallasnews.com/business/columnists/pamela-yip/20110502-states-offer-of-free-credit-monitoring-services-overdue.ece --------------------- Added: 2011-05-02 Title: ID theft hits foster youths http://www.telegram.com/article/20110501/NEWS/105019758/1052/RSS01&source=rss --------------------- _______________________________________________ Dataloss Mailing List (dataloss_at_private) CREDANT Technologies, a leader in data security, offers advanced data encryption solutions. Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently across your enterprise to ensure regulatory compliance. http://www.credant.com/stopdataloss ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Tue May 10 2011 - 00:32:40 PDT
This archive was generated by hypermail 2.2.0 : Tue May 10 2011 - 00:44:08 PDT