|
Thanks for the perfect tie-in for me to post my new obsession: A Chronology of Data Breaches Reported Since the ChoicePoint Incident
May 2, 2006 Ohio University (Athens, OH) Hackers accessed a computer system of the school's alumni relations department that included biographical information and 137,000 Social Security numbers of alum. 300,000
May 2, 2006 Georgia State Government (Atlanta, GA) Government surplus computers that sold before their hard drives were erased contained credit card numbers, birth dates, and Social Security numbers of Georgia citizens. Unknown
May 4, 2006 Idaho Power Co. (Boise, ID) Four company hard drives were sold on eBay containing hundreds of thousands of confidential company documents, employee names and Social Security numbers, and confidential memos to the company's CEO. Unknown
May 5, 2006 Wells Fargo (San Francisco, CA) Computer containing names, addresses, Social Security numbers and mortgage loan deposit numbers of existing and prospective customers may have been stolen while being delivered from one bank facility to another. Unknown
May 11, 2006 Ohio University Hudson Health Center (Athens, OH) Names, birth dates, Social Security numbers and medical information were accessed in records of students dating back to 2001, plus faculty, workers and regional campus students. 60,000
May 12, 2006 Mercantile Potomac Bank (Gaithersburg, MD) Laptop containing confidential information about customers, including Social Security numbers and account numbers was stolen when a bank employee removed it from the premises, in violation of the bank's policies. The computer did not contain customer passwords, personal identification numbers (PIN numbers) or account expiration dates. 48,000
May 19, 2006 American Institute of Certified Public Accountants (AICPA) (New York, NY) An unencrypted hard drive containing names, addresses and Social Security numbers of AICPA members was lost when it was shipped back to the organization by a computer repair company. 300,000
May 22, 2006 Dept. of Veterans Affairs (Washington, DC) Data of all American veterans who were discharged since 1975 including names, Social Security numbers and dates of birth was stolen from a VA employee's home. The employee was not authorized to take the files home to work on a data collation project. The data did not contain medical or financial information, but may have disability numerical rankings. 26,500,000
May 23, 2006 Univ. of Delaware (Newark, DE) Security breach of a Department of Public Safety computer server potentialy exposes names, Social Security numbers and driver's license numbers. 1,076
May 23, 2006 M&T Bank (Buffalo, NY) Laptop computer, owned by PFPC, a third party company that provides record keeping services for M & T's Portfolio Architect accounts was stolen from a vehicle. The laptop contained clients' account numbers, Social Security numbers, last name and the first two letters of their first name. Unknown
May 24, 2006 Sacred Heart Univ. (Fairfield, CT) Computer containing personal information including names, addreses and Social Security numbers was breached. Unknown
May 24, 2006 American Red Cross, St. Louis Chapter (St. Louis, Dishonest employee had access to Social Security numbers of donors to call urging them to give blood again. The employee misused the persoal information of at least 3 people to perpetrate identity theft and had access to the personal information of 1 million donors. 1,000,000 TOTAL 83,114,945 (Since Feb 05) Read the entire list at: http://www.privacyrights.org/ar/ChronDataBreaches.htm
|