Week of Sunday, September 5, 2010

Week of Sunday, September 5, 2010
Week of Sunday, September 5, 2010

Open Security Foundation - DataLossDB Weekly Summary
Week of Sunday, September  5, 2010

32 Incidents Added.

DataLossDB is a research project aimed at documenting known and reported 
data loss incidents world-wide. The Open Security Foundation asks for 
contributions of new incidents and new data for existing incidents. For 
any questions about the project or the data contained within this email 
or the website (, please contact us at 

DataLossDB News/Updates

  Open Security Foundation Announces New Advisory Board 

Incidents Added

Reported Date: 2010-09-11
Summary: 80 teachers and administrators Social Security numbers inadvertently published on the web
Organizations: Corona-Norco Unified School District 

Reported Date: 2010-09-09
Summary: 1,700 patient's medical records were accessed by employee
Organizations: Mayo Clinic 

Reported Date: 2010-09-09
Summary: 12 applicants names, addresses, telephone numbers, driving history and criminal records posting on the web
Organizations: East Lothian Council 

Reported Date: 2010-09-07
Summary: Names and Social Security numbers of about 7,000 on stolen computer
Organizations: City University of New York 

Reported Date: 2010-09-05
Summary: Server hacked that compromised login information for students and staff
Organizations: Eastern Michigan University 

Reported Date: 2010-09-05
Summary: Officer's names, ranks and division and confidential training material lost on missing USB drive
Organizations: Manchester Police 

Reported Date: 2010-09-04
Summary: Discovered that medical records of the Essex Youth Commission are presently unaccounted
Organizations: Town of Essex 

Reported Date: 2010-09-03
Summary: Package containing payroll checks and information on a CD lost in transit
Organizations: Benefit Concepts, Inc. 

Reported Date: 2010-09-02
Summary: 3,400 customers credit card data compromised due to a vulnerability in point of sale systems at several properties
Organizations: HEI Hospitality 

Reported Date: 2010-08-31
Summary: 300 credit card numbers stolen as part of a breach
Organizations: Serious Texas Bar-B-Q 

Reported Date: 2010-08-30
Summary: Email containing employee Social Security numbers inadvertently sent to 144 ASU addresses
Organizations: Arkansas State University 

Reported Date: 2010-06-16
Summary: Backup Tape sent FedEx missing, clients names, addresses, Social Security numbers exposed
Organizations: Idaho Power Company, Mercer Health and Benefits 

Reported Date: 2010-06-14
Summary: Improper disposal of medical records left patients information exposed
Organizations: St. Johns Mercy Medical Group 

Reported Date: 2010-05-11
Summary: 386 Social Security numbers of employees exposed from stolen hard drive
Organizations: Darden Restaurants, Olive Garden 

Reported Date: 2010-04-09
Summary: Unencrypted USB with client information lost unknown number exposed
Organizations: Hartford Life Insurance Company, Woodbury Financial Services 

Reported Date: 2009-12-19
Summary: 1,100 credit card details contained on stolen computer
Organizations: Pure Style 

Reported Date: 2009-10-05
Summary: Employee uses hand-held skimmer device to steal credit card numbers
Organizations: Nordstrom 

Reported Date: 2009-08-14
Summary:  Employee recorded customers account numbers from phone orders
Organizations: Lincoln Center Inc. 

Reported Date: 2009-07-27
Summary: Employee mistakenly emails client information to an outside address
Organizations: Benefit Strategies LLC 

Reported Date: 2009-05-11
Summary: Trojan installed on system was stealing customers credit card numbers
Organizations: America's Pet Store 

Reported Date: 2009-04-30
Summary: Unauthorized access to database exposes names and Social Security numbers
Organizations: Center for American Progress 

Reported Date: 2009-04-21
Summary: Two computers stolen from office which contained access to RMV database
Organizations: Massachusetts Registry of Motor Vehicles, Daniel C. Brightwell Insurance Agency 

Reported Date: 2009-03-03
Summary: Bag containing paperwork and flash drive stolen from car in parking lot
Organizations: Massachusetts Department of Health and Human Services, Old Colony YMCA 

Reported Date: 2009-02-24
Summary: 1387 Credit Card numbers stolen from 2 different malicious attacks by third party
Organizations: Foxboro Federal Savings 

Reported Date: 2008-09-11
Summary: 888 credit cards of customers stolen by hacker 
Organizations: Charlie Brown's Family Sports Grill 

Reported Date: 2008-07-28
Summary: Hacker steals 996 credit card numbers from computer system
Organizations: Oak Street Cafe 

Reported Date: 2008-07-03
Summary: Stolen laptop from employee car contains personal information
Organizations: Nationwide Mutual Insurance 

Reported Date: 2008-03-14
Summary: 1,771 records exposed from stolen laptop from central office
Organizations: North Carolina Employment Security Commission 

Reported Date: 2008-02-13
Summary: Laptop stolen from office contained personal information of patients
Organizations: Fresenius Medical Care Holdings Inc. (FMCNA) 

Reported Date: 2007-04-03
Summary: Laptop stolen from employee vehicle, exposes name and Social Security numbers
Organizations: College Loan Corp. 

Reported Date: 2007-01-26
Summary: Employee lost laptop and USB device containing customers confidential information
Organizations: UPS Capital Business Credit , U.S. Farm Credit Administration 

Reported Date: 2006-02-10
Summary: 5000 accounts possibly exposed as bot gains access to windows 2000 server on their network
Organizations: Cattaraugus-Allegany-Erie-Wyoming BOCES 

Blotter Posts

Added: 2010-09-12
Title: Colorado gets first victims advocate for ID theft cases 

Added: 2010-09-10
Title: Avoiding ID Theft In Social Networks 

Added: 2010-09-09
Title: Data theft hits 7,000 CUNY students - weeks ago 

Added: 2010-09-06
Title: Advice: Leave Cards With ID At Home 

Dataloss Mailing List ( 

CREDANT Technologies, a leader in data security, offers advanced data encryption solutions.
Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently 
across your enterprise to ensure regulatory compliance. 

Subscribe to InfoSec News - 

Site design & layout copyright © 1986-2015 CodeGods