2019 Breaches
Phishing Attack against BenefitMall responsible for PII Release
Who: BenefitMall When: January 7, 2019 # of Records: 111,000 What was affected: Data Breach of Benefit Mall a U.S. provider of payroll, HR, and employer services How it happened: An email phishing attack compromised employee login credentials. Emails may have included...
Huge Serious Breach of Email Addresses
Who: Collection #1 data breach # of Accounts Breached: 772,904,991 What was affected: Email addresses and passwords How it happened: “Collection #1 data breach” is made up of data stolen from numerous different data breaches. In all, there are 1.16 billion unique...
Washington Health Care Provider Succumbs to Phishing Attack
Who: Chaplaincy Health Care # of Accounts Breached: Roughly 1,080 patients. What was affected: Although it appears the schemers only were looking for more email contacts, the employee’s inbox had some patient information, including names, birth dates, partial Social...
Voice Mail Misconfiguration at Manchester Eye Hospital Startles Patients
Who: Manchester Royal Eye Hospital What was affected: Personal information left on voicemail When it happened: January 2019 How it happened: A hospital has apologized after sensitive voicemail messages left by patients were heard by a man trying to change an...
Michigan Blue Cross Blue Shield’s Third-Party Vendor hit by Ransomware
Who: Blue Cross Blue Shield of Michigan # of Accounts Breached: 15,000 policyholders What was affected: Demographic data, health plan contract numbers and some medical information. Some data also included Social Security numbers. When it happened: September 23, 2018...
Accidental Information Leak Exposes Student Information
Who: Mandan High School # of Accounts Breached: 1.024 What was affected: Students, addresses, phone numbers, PowerSchool ID's, Department of Public Instruction State ID's, student schedules and locker combinations. When it happened: January 07, 2019 How it happened:...
Insurance Policy Applicants Exposed in Bankers Life Breach
Who: Humana/Banker’s Life # of Accounts Breached What was affected: Applicants’ name, address, date of birth, last four digits of Social Security number, and some information about the health insurance policy (such as the type and cost of the coverage, and application...
Email Accounts of Prominent Politicians, Journalists and Entertainers Hacked
Who: Lawmakers and other prominent Germans, including rappers, journalists and internet personalities # of Accounts Breached: Nearly 1,000 What was affected: Links to their street and email addresses, private chats from social media, bank account details and pictures...
Bad Cyber System Management Causes Data Breach at SingHealth
Who: SingHealth # of Accounts Breached: 1.5 Million SingHealth patients What was affected: Non-medical personal details of 1.5 million patients who visited SingHealth's specialist outpatient clinics and polyclinics between May 1, 2015, and July 4, 2018, had been...
Stolen Laptop with Unencrypted Disk Leads to PHI Exposure
Who: Solis Mammography # of Accounts Breached: Approx. 500 patients What was affected: Patients’ names, dates of birth, insurance information, laboratory results, imaging, and other items. When it happened: October 17, 2018 How it happened: On October 17, 2018, a...
Conservative US Senator Twitter Account Hacked
Who: Senator Linda Frum’s Twitter account # of Accounts Breached: 1 What was affected: Senator Linda Frum’s Twitter account When it happened: January 6, 2019 How it happened: Conservative Senator Linda Frum’s Twitter account was hacked Sunday night, with those...
Significant Losses Due to Security Breach at Cryptopia
Who: Cryptopia # of Accounts Breached: Undisclosed When it happened: January 14, 2019 How it happened: On the afternoon of January 14, Cryptopia announced on its Twitter page that the exchange is going through unscheduled maintenance and it is working on resuming the...
CyberGuerrilla hacks Italian State Police Union
Who: Italian Trade Union of State Police Officers # of Accounts Breached: Over 200 police officers. What was affected: Full names and personal email addresses. Hackers also posted the user login name and password of 26 website administrators. When it happened:...
Fire at Fire Training School Personal Information Exposed
Who: Detroit Fire Department What was affected: Personal information, payroll information When it happened: January 2019 How it happened: Personal information of firefighters was strewn across the floor at the old fire training academy days after a fire there and 3...
County Online Payment System Breached
Who: Hanover County What was affected: All credit card information entered into the Click2Gov system for utility and building inspection payments between approximately August 1, 2018, and January 9, 2019. This information includes customer names, credit card number,...