======================================================================== Open Security Foundation - DataLossDB Weekly Summary Week of Sunday, May 22, 2011 24 Incidents Added. ======================================================================== DataLossDB is a research project aimed at documenting known and reported data loss incidents world-wide. The Open Security Foundation asks for contributions of new incidents and new data for existing incidents. For any questions about the project or the data contained within this email or the website (http://www.datalossdb.org), please contact us at curators_at_private ======================================================================== DataLossDB News/Updates No news this week! ======================================================================== Incidents Added Reported Date: 2011-05-27 Summary: Employee stole and misused patients' and co-workers' information Organizations: Provena Covenant Medical Center http://datalossdb.org/incidents/3784 --------------------- Reported Date: 2011-05-27 Summary: Patients' Social Security numbers, names, addresses, dates of birth and medical billing codes on laptop stolen from employee's car. Organizations: Spartanburg Regional Medical Center http://datalossdb.org/incidents/3783 --------------------- Reported Date: 2011-05-27 Summary: 4,000 employees' names and Social Security numbers exposed on web Organizations: San Juan Unified School District http://datalossdb.org/incidents/3782 --------------------- Reported Date: 2011-05-27 Summary: Stolen flash drive contained transplant patients' names, addresses, phone numbers, Social Security number, and dates of birth Organizations: Loyola University Medical Center http://datalossdb.org/incidents/3781 --------------------- Reported Date: 2011-05-27 Summary: Customer records containing names, addresses, credit card numbers, and bank account numbers left in dumpster Organizations: LA Boxing http://datalossdb.org/incidents/3778 --------------------- Reported Date: 2011-05-27 Summary: Medication information as well as children’s names, addresses and dates of birth on laptop stolen from employee's home Organizations: Asperger’s Children and Carers Together http://datalossdb.org/incidents/3776 --------------------- Reported Date: 2011-05-25 Summary: Employee leaked customers' personal information, SSNs, and account details to others who used them fraudulently Organizations: Bank of America http://datalossdb.org/incidents/3774 --------------------- Reported Date: 2011-05-24 Summary: Email addresses, passwords and names of 2,000 users acquired and exposed by hackers Organizations: Sony Ericsson Mobile Communications AB http://datalossdb.org/incidents/3769 --------------------- Reported Date: 2011-05-24 Summary: Stolen names, dates of birth, and social security numbers of students used in tax return fraud Organizations: Memphis City Schools http://datalossdb.org/incidents/3772 --------------------- Reported Date: 2011-05-23 Summary: Guests' credit card numbers, expiration dates, and security codes may have been accessed by hacker Organizations: Eagle Ridge Resort & Spa http://datalossdb.org/incidents/3773 --------------------- Reported Date: 2011-05-23 Summary: 8,500 usernames, email addresses, phone numbers and password hashes acquired by hacker Organizations: Sony BMG Greece http://datalossdb.org/incidents/3770 --------------------- Reported Date: 2011-05-22 Summary: Residents' names, addresses, phone numbers and other information of 50 residents exposed on web Organizations: Milton Keynes Council http://datalossdb.org/incidents/3764 --------------------- Reported Date: 2011-05-12 Summary: 280,000 customers' names, addresses, vehicle identification numbers, and some internal Financial Services Account numbers accessed by hacker Organizations: Honda Canada http://datalossdb.org/incidents/3775 --------------------- Reported Date: 2011-05-01 Summary: 6,000 patients notified of security breach involving protected health information following IT incident Organizations: Keith & Fisher, DDS, PA http://datalossdb.org/incidents/3765 --------------------- Reported Date: 2011-05-01 Summary: 563 patients had protected health information on stolen laptop Organizations: Edalji & Komer MD http://datalossdb.org/incidents/3766 --------------------- Reported Date: 2011-04-14 Summary: 500 patients had protected health information in stolen documents Organizations: Central Brooklyn Medical Group, PC (Preferred Health Partners) http://datalossdb.org/incidents/3762 --------------------- Reported Date: 2011-04-07 Summary: 15,000 clients notified after protected health information accessed without authorization Organizations: Community Action Partnership of Natrona County http://datalossdb.org/incidents/3767 --------------------- Reported Date: 2011-02-23 Summary: Stolen drive contained hard 50 children's personal information including race, special educational needs, outstanding offenses, past criminal convictions, and child protection issues. Organizations: Wheelbase Motor Project http://datalossdb.org/incidents/3777 --------------------- Reported Date: 2010-09-30 Summary: 115,000 subscribers' protected health information accessed by individual(s) misusing login credentials of independent practice associations Organizations: Puerto Rico Department of Health, Medical Card System, MCS Life, MCS-HMO, MCS Advantage http://datalossdb.org/incidents/3771 --------------------- Reported Date: 2010-09-20 Summary: 19,222 patients' names, dates of birth, social security numbers, diagnostic codes, and insurance claim information on missing backup tape Organizations: Pediatric and Adult Allergy, PC http://datalossdb.org/incidents/3763 --------------------- Reported Date: 2010-09-20 Summary: 1,361 individuals' names, dates of birth, and in some cases, clinical information were in a stolen briefcase Organizations: The Kent Center http://datalossdb.org/incidents/3760 --------------------- Reported Date: 2010-09-20 Summary: 507 patients had protected health information on stolen documents Organizations: LabCorp Patient Service Center http://datalossdb.org/incidents/3761 --------------------- Reported Date: 2010-08-22 Summary: 542 patients had name, medical record number, diagnosis and treatment information on stolen desktop computer Organizations: Kings County Hospital Center http://datalossdb.org/incidents/3759 --------------------- Reported Date: 2010-03-05 Summary: Hacking incident exposes personal information Organizations: Trump International Beach Resort http://datalossdb.org/incidents/3768 --------------------- ======================================================================== Blotter Posts Added: 2011-05-29 Title: Insider data theft costs Bank of America $10 million http://www.networkworld.com/news/2011/052611-insider-data-theft-costs-bank.html?fsrc=netflash-rss --------------------- Added: 2011-05-25 Title: 28 Indicted in Brooklyn-Based Identity Theft, Check Forgery Ring http://feeds.nbcnewyork.com/click.phdo?i=b75f8de817e0a3ae8aef72ae7c0469a2 --------------------- Added: 2011-05-25 Title: Identity theft ring busted in Peel Region http://www.lfpress.com/news/canada/2011/05/25/18192196.html --------------------- Added: 2011-05-24 Title: Sonys 12 Month Identity Theft Program Now Live http://n4g.com/news/770797/sonys-12-month-identity-theft-program-now-live --------------------- Added: 2011-05-24 Title: Men admit using identities of inmates, homeless to get $1.6 million in refunds http://www.examiner.com/crime-in-atlanta/men-admit-using-identities-of-imates-homeless-to-get-1-6-million-refund --------------------- Added: 2011-05-23 Title: PSN Attack Expected to Cost Sony $171 Million http://www.1up.com/news/psn-attack-expected-cost-sony-171-million --------------------- Added: 2011-05-23 Title: Sony Estimates PlayStation Network Outage To Cost $171 Million http://feeds.g4tv.com/~r/g4tv/thefeed/~3/Zmcz-b5HJzs/sony-estimates-playstation-network-outage-to-cost-171-million.html --------------------- _______________________________________________ Dataloss Mailing List (dataloss_at_private) CREDANT Technologies, a leader in data security, offers advanced data encryption solutions. Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently across your enterprise to ensure regulatory compliance. http://www.credant.com/stopdataloss ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Tue May 31 2011 - 02:09:54 PDT
This archive was generated by hypermail 2.2.0 : Tue May 31 2011 - 02:19:46 PDT