Balloon Race: Data Breaches - Public Data
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
View only
 
 
Still loading...
ABCDEFGHIJKLMNOPQRSTUVWXYZAAABACADAEAFAGAHAIAJAKALAMANAOAPAQARASATAUAVAWAXAYAZBABB
1
namealternativenamenotesprimaryvaluesubcategorycategorytypehighlightmetric_001metric_002metric_003metric_004excludefirstsourcesecondsourcethirdsource
2
Entityalternative namestoryYEARrecords lostORGANISATIONMETHOD OF LEAKinteresting storyNO OF RECORDS STOLENDATA SENSITIVITYUNUSEDUNUSEDExclude1st source link2nd source link3rd sourcesource nameUNUSEDUNUSEDUNUSEDUNUSEDUNUSEDUNUSED
3
Elaboration if there's an interesting story or detail behind ityears are encoded (0=2004, 8 = 2012, 9 = 2013, 10=2014, 11=2015, 12=latest)(use 3m, 4m, 5m or 10m to approximate unknown figures)(use 3m, 4m, 5m or 10m to approximate unknown figures)1. Just email address/Online information 20 SSN/Personal details 300 Credit card information 4000 Email password/Health records 50000 Full bank account detailsShow this item in the viz?
4
AOLAmerican Online A former America Online software engineer stole 92 million screen names and e-mail addresses and sold them to spammers who sent out up to 7 billion unsolicited e-mails.092,000,000webinside job, hacked920000001http://money.cnn.com/2004/06/23/technology/aol_spam/http://www.msnbc.msn.com/id/8985989/#.UFcN8RgUwaACNN
5
AOLAmerican OnlineDurp. AOL VOLUNTARILY released search data for roughly 20 million web queries from 658,000 anonymized users of the service. No one is quite sure why.220,000,000webaccidentally publishedy200000001http://techcrunch.com/2006/08/06/aol-proudly-releases-massive-amounts-of-user-search-data/Tech Crunch
6
KDDIJapanese telecommunications operatorPress report: "Tokyo police have arrested two men for trying to extort nearly US$90,000 from KDDI Corp. The pair allegedly threatened to disclose the existence of storage media containing personal data belonging to four million KDDI customers prior to a shareholder meeting; however, KDDI alerted the police as soon as they were contacted by the blackmailers; the police monitored communications between KDDI and the pair for several weeks. "24,000,000telecomshackedy40000001http://www.computerworld.com/s/article/9001150/KDDI_suffers_massive_data_breachComputer World
7
T-Mobile, Deutsche TelecomThieves got their hands on a storage device with the data, which included the names, addresses, cell phone numbers, and some birth dates and e-mail addresses for high-profile German citizens. The company said the records did not contain bank details, credit card numbers, or call data.217,000,000telecomslost / stolen media 170000001http://www.datalossdb.orghttp://www.informationweek.com/security/attacks/t-mobile-lost-17-million-subscribers-per/210700232Data Loss Database
8
Dai Nippon PrintingJapanese printing companyA former contractor of Dai Nippon Printing Company in Tokyo, Japan stole 8.6 million records containing the personal data of customers of 43 of the company's clients. 38,637,405retailinside job86000001http://usatoday30.usatoday.com/tech/news/computersecurity/2007-12-30-data_n.htmUSA Today
9
TD AmeritradeUS online brokerTD Ameritrade settled a class action lawsuit to compensate as many as 6.3 million TD Ameritrade customers whose data was stolen by hackers costing the Nebraska online brokerage firm less than $2 per victim.36,300,000financialhacked63000001http://www.wired.com/threatlevel/2008/07/ameritrade-hack/Wired
10
UK Revenue & CustomsHMRCA set of discs containing confidential details of 25 million child benefit recipients was lost.325,000,000governmentlost / stolen media 250000001http://news.bbc.co.uk/2/hi/uk_news/7103911.stmBBC News
11
AT&TA laptop was stolen from a car containing unencrypted Social
Security numbers and bonus/salary info of AT&T employees.
4113,000telecomslost / stolen computery1000001http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
12
BNY Mellon Shareowner ServicesWealth managementA back-up tape, containing over 12 million customers records were lost.412,500,000financiallost / stolen media 125000001http://www.wctv.tv/news/headlines/28132494.html?storySection=commentsITRC
13
Chile Ministry Of EducationA computer hacker in Chile published confidential records belonging to six million people to illustrate the weakness of their security. 46,000,000governmentaccidentally published60000001http://news.bbc.co.uk/2/hi/americas/7395295.stmhttp://www.geek.com/articles/news/government-servers-in-chile-hacked-6-million-personal-records-made-public-20080514/BBC News
14
Data Processors InternationalProvides merchant account establishment and Internet based credit card payment processing services45,000,000financialhacked50000001http://money.cnn.com/2003/02/18/technology/creditcards/CNN
15
CheckFree CorporationProvider of online banking, online bill payment and electronic bill payment services for the financial services industryCustomers who went to CheckFree's Web sites between 12:35 a.m. and 10:10 a.m. on the day of the attack were redirected to a Ukrainian Web server that used malicious software to try and install a password-stealing program on the victim's computer.55,000,000financialhackedy50000001http://www.computerworld.com/s/article/9125078/CheckFree_warns_5_million_customers_after_hackComputer World
16
AT&TUS Telecoms companyDetails of iPad 3G users hacked from AT&T website, thought to include those of White House chief of staff Rahm Emanuel.6114,000telecomshackedy1000001http://www.guardian.co.uk/technology/2010/jun/10/apple-ipad-security-leak?INTCMP=SRCHGuardian
17
178.comgaming website710,000,000webhacked100000001http://www.ehackingnews.com/2011/12/hackers-compromised-38-million-chinese.html
18
Bethesda Game StudiosUS video game company (Elder Scrolls, Fallout 3)Hacking collective Lulzsec stole account information of 200,000 user.7200,000gaminghacked2000001http://www.pcworld.com/article/231215/lulzsec_a_short_history_of_hacking.htmlPC World
19
China Software Developer Network76,000,000webhacked60000001http://www.zdnet.com/blog/security/chinese-hacker-arrested-for-leaking-6-million-logins/11064
20
San Francisco Public Utilities Commission 7180,000governmenthacked1800001http://news.cnet.com/8301-27080_3-20068386-245/sf-utilities-agency-warns-of-potential-breach/
21
Sony PicturesLulzSec hacking collective stated all of the information it took was unencrypted, “Sony stored over 1,000,000 passwords of its customers in plaintext." More than 1 million user accounts were compromised. An additional 75,000 music codes and 3.5 million coupons were also uncovered.71,000,000webhackedy10000001http://mashable.com/2011/06/02/sony-pictures-hacked/Mashable
22
Sony PSNRounding off a thoroughly unhappy year for Sony, their third breach saw the loss of 76,000,000 Sony PSN and Qriocity user accounts to hacking collective Lulzsec.777,000,000gaminghackedy770000001http://mashable.com/2011/05/31/sony-playstation-services-return/Mashable
23
TianyaUsernames, clear tect passwords and email addresses hacked. blogging site728,000,000webhacked280000001http://www.scmagazine.com.au/News/349585,28-million-clear-text-passwords-found-after-tianya65279-hack.aspx
24
US Army750,000militaryaccidentally published500001http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
25
Writerspace.comWebsite design and hosting for writersHacker group LulzSec released the e-mails and passwords, 12,000 of which were confirmed to originate from Writerspace.com. 762,000webhacked620001http://www.pcmag.com/article2/0,2817,2387186,00.aspPC Mag
26
DropboxWebsites stolen from other websites used to sign into a small number of Dropbox accounts. The hack was mainly used to send spam to users. 830,000webhacked300001http://www.informationweek.co.uk/security/client/dropbox-admits-hack-adds-more-security-f/240004697
27
DropboxUser credentials were stolen in a 2012 hack, but the number affected has only just come to light. 868,700,000webhacked687000001http://www.telegraph.co.uk/technology/2016/08/31/dropbox-hackers-stole-70-million-passwords-and-email-addresses/
28
GamigoGerman gaming website88,000,000webhacked80000001http://www.forbes.com/sites/andygreenberg/2012/07/23/eight-million-passwords-spilled-from-gaming-site-gamigo-months-after-breach/
29
Last.fmOwned by CBSHistorical 2012 hack, details have only just been disclosed.843,500,000webhacked435000001http://www.zdnet.com/article/hackers-stole-43-million-last-fm-account-details-in-2012-breach/
30
LinkedInInformation about a 2012 data breach has just come to light. 8117,000,000webhacked1170000001http://money.cnn.com/2016/05/19/technology/linkedin-hack/
31
Yahoo VoicesYahoo Voices service was hacked, exposing more than 450,000 usernames and passwords.8450,000tech, webhacked5000001http://it.slashdot.org/story/12/07/12/1243217/nearly-half-a-million-yahoo-passwords-leaked-updated?utm_source=feedburnerGoogle+Reader&utm_medium=feed&utm_campaign=Feed%3A+Slashdot%2Fslashdot+%28Slashdot%29&utm_content=Google+Readerhttp://www.pbs.org/newshour/rundown/2012/07/check-whether-your-yahoo-password-was-hacked.htmlSlashdot
32
AppleDeveloper portal hacked. "Some" information about 275,000 3rd-party developers potentially stolen.9275,000techhacked3000001http://www.guardian.co.uk/technology/2013/jul/22/apple-developer-site-hacked
33
Drupalopen-source content management platformMalicious files placed on association.drupal.org servers via a 3rd-party application. Exposed usernames, e-mail addresses, country information, and cryptographically hashed passwords.91,000,000webhacked10000001http://arstechnica.com/security/2013/05/drupal-org-resets-login-credentials-after-hack-exposes-password-data/Ars Technica
34
Evernoteonline note-taking siteEvernote asked its 50 million users to reset their passwords following an attempt to hack the note-taking network. The company said it’d found no evidence that any payment information for Evernote Premium or Evernote Business customers had been accessed, nor was there any indication that content stored by users had been accessed, changed or lost.950,000,000webhacked500000001http://www.wired.co.uk/news/archive/2013-03/04/evernote-hackedhttp://www.digitaltrends.com/mobile/evernote-hack-50-million-users-forced-to-reset-passwords/Wired; Digital Trends
35
FacebookUsing the network's "Download Your Information" tool, some Facebook members were inadvertently sent the phone numbers or email address of Facebook friends that were otherwise private. Facebook assured users that the bug was fixed within a day, and that there is no evidence that the information was used maliciously.96,000,000webaccidentally published60000001https://www.facebook.com/notes/facebook-security/important-message-from-facebooks-white-hat-program/10151437074840766
36
Scribd"world's largest online library" Hack resulted in a few hundred thousand stolen passwords.9500,000webhacked5000001http://nakedsecurity.sophos.com/2013/04/05/scribd-worlds-largest-online-library-admits-to-network-intrusion-password-breach/http://www.nbcnews.com/technology/scribd-hack-exposes-thousands-users-1B9239618Naked Security; NBC News
37
TumblrTumblr apparently only just found out about a 2013 data breach, affecting 65m users. 965,000,000webhacked650000001https://motherboard.vice.com/read/hackers-stole-68-million-passwords-from-tumblr-new-analysis-reveals
38
TwitterHackers had access to limited user information -- usernames, email addresses, session tokens and encrypted/salted versions of passwords -- for approximately 250,000 users.9250,000webhacked 2500001http://www.wired.co.uk/news/archive/2013-02/02/twitter-hackedWired
39
Yahoo Japan22 million Yahoo user IDs may have been leaked after Yahoo detected an unauthorized attempt to access the administrative system of its web portal Yahoo Japan. The leaked information did not include passwords and data necessary for identity verification to reset passwords.922,000,000tech, webhacked220000001http://www.reuters.com/article/2013/05/17/us-yahoojapan-idUSBRE94G0P620130517Reuters
40
"Gmail"5 million Gmail account passwords leaked to a forum, alongside passwords from other email providers. Close inspection revealed the user details to be old (3+ years). Multiple individual targeted hacks of third party websites where people used their Gmail IDs, rather than one big dataleak, suspected to be the method. Gmail itself was not hacked. 105,000,000webhackedy50000001Xhttp://thenextweb.com/google/2014/09/10/4-93-million-gmail-usernames-passwords-published-google-says-evidence-systems-compromised/
41
AOL102,400,000webhacked240000001http://blog.aol.com/2014/04/28/aol-security-update/
42
Dominios Pizzas (France)10600,000webhacked6000001http://www.theguardian.com/technology/2014/jun/16/dominos-pizza-ransom-hack-data
43
EbayThe company has said hackers attacked between late February and early March with login credentials obtained from “a small number” of employees. They then accessed a database containing all user records and copied “a large part” of those credentials.10145,000,000webhackedy1450000001http://my.chicagotribune.com/#section/-1/article/p2p-80265168/
44
European Central Bank104,000,000financialhacked40000001http://www.cityam.com/1406190300/ecb-website-hacked
45
MacRumours.com10860,000webhacked9000001http://www.wired.co.uk/news/archive/2013-11/13/mac-rumours-forums-hacked
46
NASDAQNasdaq OMX GroupNasdaq forum website hacked by hacking ring, email addresses and passwords compromised10500,000financialhackedy5000001http://www.reuters.com/article/2013/07/18/net-us-nasdaq-cybercrime-website-idUSBRE96H1F520130718
47
New York TaxisA freedom of information request resulted in the release of data on all 173 million journeys undertaken by New York taxis in one year. Unfortunately, the data was incorrectly anonymised and relatively easy to decode, revealing the driver IDs, pickup & dropoff times, and GPS routes taken for every single cab journey.1052,000transportpoor securityy520001https://medium.com/@vijayp/f6bc289679a1
48
Twitch.tvGaming siteMarch 23rd. Details unknown at this point. All Twitch's 10 million users have been requested to change their passwords.1010,000,000healthcarehacked100000001http://blog.twitch.tv/2015/03/important-notice-about-your-twitch-account/
49
Adult Friend FinderInternet dating & hookup siteSexual preferences, names, email addresses, usernames, dates of birth, postal codes113,900,000webhacked39000001http://www.channel4.com/news/adult-friendfinder-dating-hack-internet-dark-web
50
British AirwaysFrequent flyer accounts11500,000retailhacked5000001http://www.theguardian.com/business/2015/mar/29/british-airways-frequent-flyer-accounts-hacked
51
CarefirstBlue Cross, Blue Shield US medical insurerAttacked happened in June 2014. Was announced in June 2015.111,100,000healthcarehacked11000001http://carefirstanswers.com/
52
IRSUS Tax service"An unnamed cybermafia used an IRS app to download forms full of personal information. They posed as legitimate taxpayers, and tried to download forms on 200,000 people between February and May. They got away with half of them, the IRS said. The crooks used about 15,000 of them to claim tax refunds in other people's names."11100,000governmentpoor security1000001http://money.cnn.com/2015/05/26/pf/taxes/irs-website-data-hack/index.html
53
KromtechMacKeeper softwareA security researcher stumbled on a leak, which exposed usernames, email addresses and passwords of users. He notified Kromtech, who patched it quickly. 1113,000,000webhacked130000001https://thestack.com/security/2015/12/15/mackeeper-discloses-13-million-mac-users-details-with-poor-hash-protection/https://www.reddit.com/r/apple/comments/3wq9fc/massive_data_breach/
54
Slacksoftware for remote working11500,000techpoor security5000001http://techcrunch.com/2015/03/27/slack-got-hacked/
55
UberOccured Sep 2014. Revealed Feb 2015. Names & license plates of 50,000 driver partners.1150,000techpoor security500001http://blog.uber.com/2-27-15
56
Code.orgNon-profit organisationVolunteer email addresses were left accessible via web browser. 1210webpoor security101http://blog.code.org/post/140938173013/some-volunteer-email-addresses-compromised
57
Linux Ubuntu forums122,000,000webhacked20000001http://betanews.com/2016/07/15/ubuntu-linux-forums-hacked/
58
MinecraftLifeboat' communityPlayers using the Lifeboat servers have had their email addresses and passwords leaked.127,000,000webhacked70000001http://motherboard.vice.com/read/another-day-another-hack-7-million-emails-and-hashed-passwords-for-minecraft
59
MySpaceThe same hacker who was selling LinkedIn user data now claims to have MySpace user data too, and lots of it. 12164,000,000webhacked1640000001http://motherboard.vice.com/read/427-million-myspace-passwords-emails-data-breach
60
National Childbirth TrustCharityLondon-based charity hacked for user information. 1215,000webhacked150001https://thestack.com/security/2016/04/08/childbirth-charity-hack-leaks-15000-expectant-parents-data/
61
Syrian governmentHacking outfit calling itself 'Cyber Justice Team' leaked 10GB of data from the government and private websites. Seems to be just data from old leaks, though.12274,477governmenthacked2744771http://news.softpedia.com/news/syrian-government-hacked-43-gb-of-data-spilled-online-by-hacktivists-502765.shtml
62
uTorrent It's unclear what data has been breached, exactly, but uTorrent has advised passwords are probably compromised. 1235,000webhacked350001https://torrentfreak.com/utorrent-forums-hacked-passwords-compromised-160608/
63
VerizonSecurity servicesCustomer database and information about company's security flaws stolen and put up for sale. 12100,000webhacked100001http://arstechnica.com/security/2016/03/after-verizon-breach-1-5-million-customer-records-put-up-for-sale/
64
Telegram Instant messaging serviceDespite Telegram's claims of super security, they've been hacked by a group called Rocket Kitten. 1315,000,000private firmhacked150000001http://venturebeat.com/2016/08/02/hackers-break-into-telegram-revealing-15-million-users-phone-numbers/
65
South Carolina State Dept. of RevenueA server was breached by an international hacker.83,600,000governmenthacked36000003http://www.infoworld.com/article/2615754/cyber-crime/south-carolina-reveals-massive-data-breach-of-social-security-numbers--credit-cards.html
66
Ameritrade Inc.Computer backup tape containing personal information was lost. online broker1200,000financiallost / stolen media20000020http://www.nbcnews.com/id/7561268/
67
Automatic Data ProcessingBusiness outsourcing, payrolls, benefits1125,000financialpoor security13000020http://abcnews.go.com/Technology/story?id=2160425&page=1#.UFcROxgUwaAABC
68
Hewlett PackardLaptop lost/stolen containing employee data: names, addresses, Social Security numbers, dates of birth and other employment-related information.2200,000tech, retaillost / stolen mediay20000020http://news.cnet.com/Laptop-with-HP-employee-data-stolen/2100-7348_3-6052964.html
69
US Dept of Vet AffairsThe Veterans Affairs Department agreed to pay $20 million to settle a class action lawsuit over the loss of a laptop. The department originally took three weeks to report the theft. The laptop was recovered with the data apparently intact a month after it was reported stolen. But it is impossible to say with absolute certainty that the data was not accessed and copied. 226,500,000government, militarylost / stolen computer2650000020http://gcn.com/Articles/2009/02/02/VA-data-breach-suit-settlement.aspx
70
City and Hackney Teaching Primary Care TrustHeavily encrypted disks containing details of children are lost by couriers.3160,000governmentlost / stolen media16000020http://www.computerweekly.com/news/2240104003/Hackney-NHS-trust-encrypts-IT-equipment-following-loss-of-child-data
71
Driving Standards AgencyHard disk with details of candidates for the driving theory test was lost in a premises in Iowa by subcontractors. Only names, addresses and phone numbers. 33,000,000governmentlost / stolen media300000020http://news.bbc.co.uk/1/hi/uk_politics/7147715.stm
72
Driving Standards Agency,Details of candidates for the driving theory test were on a hard drive that went missing in the US. 33,000,000governmentlost / stolen media300000020http://news.bbc.co.uk/1/hi/uk_politics/7147715.stm
73
Gap IncStolen laptop which contained social security numbers, data on people who applied for positions at Gap stores, including Banana Republic and Old Navy, between July 2006 and June 2007.3800,000retaillost / stolen computer80000020http://www.pcworld.com/article/137865/article.htmlPC World
74
Monster.comJobs websiteA trojan virus stole log-ins that were used to harvest user names, e-mail addresses, home addresses and phone numbers. Soon after phishing e-mails encouraged users to download a Monster Job Seeker Tool, which was in fact a program that encrypted files in their computer and left a ransom note demanding money for their decryption.

31,600,000webhackedy160000020http://news.bbc.co.uk/1/hi/6956349.stmBBC
75
Texas LotteryData on more than 89,000 lottery winners (including names, Social Security numbers, addresses and prize amounts )were taken from the agency without permission by a former computer analyst who copied the password-free data. The employee added he wanted the information "for possible future reference as a programmer at other state agencies."389,000governmentinside job9000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
76
GS CaltexPrivate oil companyTwo multimedia discs containing the names, social security numbers, addresses, cell phone numbers, email addresses and workplaces of Korean customers sorted by age were stolen. They were found by an office worker in a backstreet’s trash pile in Seoul. Experts say a GS Caltex employee likely stole the information for personal purposes given there were no signs of hacking.411,100,000energyinside job1110000020http://www.datalossdb.orghttp://english.donga.com/srv/service.php3?biid=2008090631088Data Loss Database
77
Jefferson CountyWest Virginia, US"Jefferson County Clerk Jennifer Maghan said she unveiled a new online search tool that enabled residents and business professionals to access nearly 1.6 million documents that are stored in her office via their home computers"41,600,000governmentaccidentally publishedy160000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlhttp://www.journal-news.net/page/content.detail/id/511806.html?nav=5006ITRC
78
Norwegian Tax Authorities"Tax authorities said they had accidentally sent CD-ROMs filled with the 2006 tax returns of nearly four million people living in Norway, a country of
just 4.6 million inhabitants, to the editorial staff at national
newspapers, radios and television stations."
43,950,000governmentaccidentally publishedy400000020http://infowatch.com/node/1289Info Watch
79
Service Personnel and Veterans Agency (UK)Stolen USBs containing personal information about private lives of staff. 450,500governmentlost / stolen media5000020http://news.bbc.co.uk/1/hi/england/gloucestershire/7639006.stm
80
Stanford UniversityTens of thousands of past and current Stanford University employees had personal information - including their dates of birth, Social Security numbers and home addresses - stored on the hard drive of a stolen university laptop.472,000academiclost / stolen computer7200020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlhttp://www.sfgate.com/bayarea/article/Stanford-employees-data-on-stolen-laptop-3281185.phpITRC
81
StarbucksA laptop was stolen that contained private information on 97,000 employees, including names, addresses and Social Security numbers. Employees tried to sue Starbucks in California winning their case in the appeals court before losing in the higher federal court as they were unable to prove any cognizable harm or injury.497,000retaillost / stolen computery10000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlhttp://privacyblog.littler.com/2011/01/articles/identity-theft/after-starbucks-laptop-is-stolen-alleged-victims-of-identity-theft-win-pyrrhic-victory/ITRC
82
UK Home OfficePA Consulting lost an unencrypted memory stick containing details of high risk, prolific and other offenders.484,000governmentlost / stolen media8400020http://en.wikipedia.org/wiki/List_of_UK_government_data_losses
83
Blue Cross Blue Shield of TennesseeUS health insurance organizationA thief stole 57 hard drives from the closet of a BlueCross call center in Chattanooga, Tenn. Data on the stolen hard drives was encoded but not encrypted. Bluecross stated there was no evidence the information was accessed due to the specialized nature of the hardware stolen. 51,023,209healthcarelost / stolen media y100000020http://www.scmagazine.com/thief-steals-57-hard-drives-from-bluecross-blueshield-of-tennessee/article/162178/http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/breachtool.htmlITRC
84
US Dept of Defense"According to a report to Congress, assessment forms of 72,000 service members who returned from deployment to Iraq or Afghanistan between Jan 1, 2007 to May 31, 2008 were breached. The forms ask for the service member's SSN,. Name, date of birth."572,000militarylost / stolen media y7200020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
85
US MilitaryWithout first destroying the data the agency sent back a defective unencrypted hard drive for repair and recycling which held detailed records on 76 million veterans, including millions of Social Security numbers dating to 1972.576,000,000militarylost / stolen media y7600000020http://www.wired.com/threatlevel/2009/10/probe-targets-archives-handling-of-data-on-70-million-vets/ITRC
86
US National GuardAbout 131,000 former and current Army Guard members potentially affected when a personal laptop owned by an Army Guard contractor was stolen. Database incuded names, Social Security Numbers, incentive payment amounts and payment dates.5131,000militarylost / stolen computery13000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
87
Virginia Prescription Monitoring ProgramA hacker, who was never arrested, demanded a $10 million ransom for a breach effecting 530,000 Virginians. Social security numbers may have been taken. The data was found in a database containing 35 million prescription records.5531,400healthcarehackedy50000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
88
Classified Iraq War documentsWikileaks6392,000governmentinside job40000020http://www.forbes.com/sites/andygreenberg/2010/10/22/wikileaks-reveals-the-biggest-classified-data-breach-in-history/
89
Colorado governmentDepartment of Health Care Policy & Financing6105,470healthcarelost / stolen computer10000020http://www.databreaches.net/?p=12611http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/breachtool.html
90
Educational Credit Management CorpUS student loan guarantorA contractor for the US Department of Education stole the records of 3.3 million people. Data included names, addresses, Social Security numbers and dates of birth of borrowers, but no financial or bank account information.63,300,000financiallost / stolen mediay330000020http://www.foxnews.com/us/2010/03/26/student-loan-company-data-m-people-stolen/ITRC
91
Gawker.comUS news and gossip blog network including Gawker.com Gizmodo.com Lifehacker.comHacked. 1.5 Million usernames, emails, passwords taken.61,500,000webhacked150000020http://www.guardian.co.uk/technology/2010/dec/13/gawker-hackers-passwords-twitter-wikileaks?INTCMP=SRCHhttp://www.mediaite.com/online/gawker-medias-entire-commenter-database-appears-to-have-been-hacked/Guardian
92
Ohio State University6760,000academichacked80000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
93
Seacoast Radiology, PAComputer gamers hacked a server at Seacoast Radiology in Rochester in search of more bandwidth in November to play Call of Duty: Black Ops. In the process they also gained access to personal records of the more than 230,000 patients of the health center.6231,400healthcarehackedy20000020http://www.fosters.com/apps/pbcs.dll/article?AID=/20110120/GJNEWS_01/701209744http://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/breachtool.html
94
Yale University643,000academicaccidentally published4000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
95
Countrywide Financial CorpEmployee convicted of downloading millions of borrower files and selling the information to other loan officers.mortgage lender72,500,000financialinside job250000020http://latimesblogs.latimes.com/money_co/2011/09/man-convicted-in-huge-countrywide-data-theft-gets-8-months-in-prison.html
96
Honda CanadaNames, addresses and vehicle identification numbers were taken from the company’s eCommerce websites myHonda and myAcura7283,000retailpoor securityy30000020http://www.guelphmercury.com/news-story/2200845-honda-canada-hit-by-online-security-breach-283-000-car-owners-personal-data-stolen/
97
Memorial Healthcare SystemFloridaAn employee of an affiliated physician’s office may have improperly accessed patient information through a web portal used by physicians who provide care and treatment at MHS. Specifically, patients’ names, dates of birth, and Social Security numbers.7102,153healthcarelost / stolen media10000020http://www.mhs.net/pdf/release071112.pdfhttp://www.hhs.gov/ocr/privacy/hipaa/administrative/breachnotificationrule/breachtool.html
98
Nexon Korea CorpPersonal data of subscribers to online game Maple Story was leaked.game developer713,200,000webhacked1320000020http://www.reuters.com/article/2011/11/26/us-korea-hacking-nexon-idUSTRE7AP09H20111126
99
Oregon Department of Motor VehiclesSheriff's detectives arrested Tim Nuss for accessing an old Oregon Department of Motor Vehicles database. The DMV database was once sold to marketing companies, but the department stopped selling the information in the late 1990s. The sold data include the names, addresses, birth dates, gender and ages of people who registered with the DMV, but no financial information. 71,000,000governmentpoor security100000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtmlITRC
100
Southern California Medical-Legal ConsultantsElectronic files containing names and social security numbers of approximately 300,000 individuals who have applied for California workers’ compensation benefits had been exposed to unauthorized access.7300,000healthcarehacked30000020http://www.idtheftcenter.org/artman2/publish/lib_survey/ITRC_2008_Breach_List.shtml
Loading...
 
 
 
2016 Update
data breaches data
underground data costs
data-old
Sheet7