Data Breaches Caused By Third-parties

Data Breached HR chat messages

Data Breached Credentials for Azure

Data Breached Full names and dates of birth, postal and email addresses, phone numbers, passport details, credit card numbers, medical records and recent test results and diagnoses.

Data Breached Patient names, contact details, dental diagnoses, treatment information, patient account numbers, billing details, dentists’ names, bank account numbers, and health insurance data.

Data Breached Names, postal and email addresses, birth dates and national insurance numbers of 30,000 customers

Data Breached Digital certificate toolkit

Data Breached Red-team tools

Data Breached Customers’ email traffic

Data Breached Data of some current and former employees, as well as some company information

Data Breached Names and contact information

Data Breached Contact details, health insurance policy numbers, and appointment notes related to treatment, such as health conditions, procedures, and prescriptions, as well as other sensitive data, including the credit card information and Social Security information of some patients

Data Breached Driver’s license numbers, names, dates of birth, addresses and vehicle registration histories

Data Breached Customer names, tax ID numbers, loan documents, business contracts, private emails, invoices, credentials for network shares, company confidential files

Data Breached 7 million parent account email addresses, and 32 million usernames associated with the parent accounts, containing encrypted passwords, players’ birthdays and gender

Data Breached Names, credit card details, ID numbers and reservation details

Data Breached Not disclosed

Data Breached E-mail addresses, full names, bcrypt hashed passwords, titles, company names, IP addresses, and other system-related data

Data Breached Passports, driver’s licenses, ID cards (in Form I-9) of employees

Data Breached Names addresses, payment card information (the account number, expiration date, and security codes)

Data Breached Names, phone numbers, encrypted passwords, and partial credit card numbers of 1M accounts

Data Breached Names, phone numbers, locations, hundreds of thousands of voice mails, medical and financial details

Data Breached Names, credit card information of 3M customers

Data Breached Utility bill information, credit/debit card information

Data Breached Names, addresses, emails, product orders, the last four digits of SS numbers

Data Breached Patient names, addresses, phone numbers , medical departments patients visited, dates of birth, treatment facilities, treating physicians, departments of service, room numbers, medical record numbers.

Data Breached Utility payment information

Data Breached Customer payment information

Data Breached Full names, email and street addresses, phone numbers and ZIP codes of 38 million US citizens

Data Breached Names, medical service numbers and dates of service for patients and list of donors

Data Breached Members names, emails and physical addresses

Data Breached Infection status, dates of birth, addresses, names, and other PII of COVID-19 patients in South Dakota

Data Breached Names, addresses and gift history of donors

Data Breached Personal information of donors

Data Breached Corporate data

Data Breached Personal information of investors

Data Breached E-mail IDs, phone numbers, last known location, phone type and login dates

Data Breached First name, last name, email address, IP address, approximated user location based on their IP address, and gender, as well as encrypted, hashed and salted passwords.

Data Breached Name, date of birth, contact information, and some information about donations regarding alumni and donors

Data Breached 7.5 million users’ names, emails and physical addresses, birthdates, and phone numbers

Data Breached ACH routing numbers, IBANs and other financial data as well as PII

Data Breached Names, addresses, birth dates, banking and IRS data

Data Breached E-mail addresses & passwords of MU students

Data Breached Breached email addresses, breached passwords

Data Breached Full name,Business address, Business email address, Business phone number, Company URL, Nature of business,Encrypted password (hashed),IP address, Newsletter subscription preferences

Data Breached PPP applications, in particular business details, such as an address or tax identification number, or a business owner’s information, such as name, address, Social Security number, phone number, email and citizenship status

Data Breached 7 million Indians’ Aadhaar number, name, gender, date of birth, biometric details, Permanent Account Number (PAN), scanned copies of Caste and Religion certificates, user’s picture, residential details, professional degree certificates

Data Breached Full names, email addresses, mobile numbers, Facebook IDs, age, city, gender, telecom service provider

Data Breached Full names and Social Security numbers of some people who have applied for unemployment benefits

Data Breached Name, medical treatment information, diagnosis information/codes, medication information, dates of service, insurance provider, health insurance number, date of birth, and Social Security number.

Data Breached First and last name, billing address and IBAN and account number

Data Breached Human resource files from RigUp’s clients, contractors, job seekers

Data Breached 5.2 million customers’ personal information incl. names, addresses, birthdays, emails, phone numbers and loyalty reward program numbers

Data Breached Not disclosed for now

Data Breached Names, phone numbers, addresses, credit card numbers, CVVs and expiration dates

Data Breached Customer names and addresses, phone numbers, account numbers, rate plans, and features, and billing information.

Data Breached Name, Social Security number, driver’s license number, listeners’ credentials

Data Breached Sensitive files

Data Breached Direct deposit forms, driver’s licenses, passports, birth certificates, marriage certificates

Data Breached 8 million sales records: customer names, email addresses, shipping addresses, purchases, last four digits of credit card numbers

Data Breached Non-disclosure agreements, partial schematic for a missile antenna

Data Breached First and Last Name, Last Four Digits of Social Security Number, Transaction Date and Amount, Plan Sponsor/Employer Name, Address, Social Security Number, Email Address, Mailing Address, Date of Birth

Data Breached Tax ID numbers, bank account numbers

Data Breached Names, dates of birth, billing codes, insurance description, and medical record numbers

Data Breached Names, addresses, phone numbers, dates of birth, Social Security numbers and Health Share identification numbers

Data Breached Customers’ names, card numbers, expiration dates, and internal verification codes

Data Breached Resident’s names, addresses, email addresses, payment card numbers, expiration dates, card security code (CVV) information, bank account numbers and routing numbers

Data Breached Name, date of birth, Social Security number, financial account information, tax identification number, and information on borrowers, liability, assets, employment, and income

Data Breached 1.7 million customers information(name, ID, contacts)

Data Breached Instagram usernames and passwords

Data Breached Names, dates of birth, home addresses, email and phone numbers, names of family members, past addresses, the reason for application

Data Breached Photo IDs, phone numbers and home addresses of marijuana users as well as cannabis variety and quantity purchased

Data Breached Employee names, emails and performance

Data Breached Company data, data of government organizations and private companies, names and addresses, previous employment history, birthdates, telephone numbers of 8,122 applicants, employees and retirees

Data Breached Names, street addresses and Social Security numbers

Data Breached Name, payment card expiration date and security code and Blue Bear account usernames and passwords

Data Breached E-mail addresses and phone numbers

Data Breached Name, address, email, phone number, customer number, age, account number and account balance

Data Breached 2.4 million customers

Data Breached 98,000 SAF servicemen information

Data Breached 2,400 personal data including full names and NRIC numbers, and a combination of contact numbers, e-mail addresses or residential addresses

Data Breached 3,500 customers utility and parking accounts

Data Breached 8,800 Marietta utility customers card information

Data Breached fingerprint database

Data Breached 477,000 clients’ media contacts, business account information, 35,000 hashed user passwords, various documents, and admin credentials

Data Breached seven current and former employees’ information includes names, dates of birth, and Social Security numbers

Data Breached email addresses, usernames and recent tweets

Data Breached not disclosed

Data Breached 44,000 members information

Data Breached first and last names, physical addresses, ZIP codes, email addresses, payment card numbers, card security codes, and expiration dates

Data Breached not disclosed

Data Breached 4,000 residents’ data

Data Breached 5 million members’ information

Data Breached 400,000 Italian clients’ information

Data Breached some of the browsing habits of customers

Data Breached undisclosed number of patients’ information

Data Breached 560,000 students’ information

Data Breached 2.8 million CenturyLink customer information which including names, addresses, phone numbers, email addresses and CenturyLink account numbers

Data Breached thousands of usernames, passwords and addresses

Data Breached 10,000 Zendesk Support and Chat accounts

Data Breached 1,498 individuals’ information includes encrypted credit or debit card numbers, first names, last names, addresses and email addresses

Data Breached not disclosed

Data Breached 4.9 million consumers, Dashers, and merchants

Data Breached Malinda’s passengers information

Data Breached 2.5 million Canadian customers’ personal data

Data Breached usernames and email addresses associated with GitHub and Bitbucket and IP addresses and user agent strings & organisation name, repository URLs and names, branch names, and repository

Data Breached 90,000 customers’ names, addresses, and credit card numbers

Data Breached 14 Cable One employee accounts may include addresses, Social Security numbers, government-issued identification numbers, financial account numbers, digital signatures or medical and health insurance information

Data Breached 3,700 students information in District 203, 49,000 students information in District 204, 3,206 students information in District 303 and 8,000 students information in District 304

Data Breached students’ and teachers’ information (names, surnames, birthdates)

Data Breached 534,500 patients information and 7,400 financial data of AEL, 412,000 patients information with 15,000 financial data of SML, 145,100 patients information with 3,800 financial data of CBLPath, 143,400 patients information with 4,200 financial data of LMC, 44,700 patients information with 1,800 financial data of APA, 14,900 patients information and 1,200 financial data of STD, 12,700 patients information with 600 financial data of PS, 4,000 patients information and 240 financial data of ADX, 9,200 patients information with 800 financial data of SP, 4,200 patients information with 350 financial data of WPC, 6,500 patients information with 500 financial data of AD, unknown number of Natera

Data Breached 2.2 million patients information and 34,500 financial information

Data Breached Up to 100,000 Australians’ personal information

Data Breached Komodo hacked its customers and unauthorisedly transferred nearly 8 million KMD and 96 Bitcoins from their cryptocurrency wallets to a new address owned by the company to protect its customers’ funds.

Data Breached 422,600 patients information

Data Breached 12 million patients of Quest Diagnostics,7.7 million Laboratory Corporation of America (LabCorp) patients information

Data Breached 100.000 traveller photos and licence plate image

Data Breached 312,570 files in 51,025 folders, over 516 Gb of data financial and private information on all clients

Data Breached personal information including contact details

Data Breached 140 million user names, phone numbers and email addresses

Data Breached 50.000 credit card holders information

Data Breached not disclosed

Data Breached not disclosed

Data Breached 460,000 online store accounts

Data Breached credit card information

Data Breached 15,000 customers information

Data Breached 201 online stores including payment card information

Data Breached 540 million records, including account names, Facebook ID, and user activity

Data Breached customer names, contact information (including phone numbers and email addresses) and other details related to property evaluations

Data Breached the personal and medical information of hundreds of thousands of people may have been compromised

Data Breached patient names, addresses, Social Security numbers, birth dates and health insurance information for 45,000 patients was exposed

Data Breached personal information including Social Security numbers, names, dates of birth and home addresses may have been stolen

Data Breached credit card payment information since Aug. 2017

Data Breached millions of train passengers’ information

Data Breached user names, salted and hashed passwords, IP addresses and, for users who logged into Houzz using Facebook, their Facebook IDs

Data Breached theft of almost 8 bitcoins ($28,200) from five of the victims

Data Breached 24 million financial and banking documents, representing tens of thousands of loans and mortgages from some of the biggest banks in the US

Data Breached 650 consumer data

Data Breached the extent is unknown

Data Breached flight information of passengers

Data Breached credit card information of visitors

Data Breached credit card information of citizens

Data Breached credit card information of 6,000 people

Data Breached name, address, date of birth, partial info of the SSN, and some info about policy type of unknown number of customers

Data Breached 31,000 Patient Records

Data Breached credit card data of nearly 15,000 customers

Data Breached 6,000 citizens’ payment information

Data Breached 16,000 patients’ health information including names, birth dates, insurance information and addresses

Data Breached approximately 47,000 patients or guarantors whose payment information, including partial credit card information

Data Breached account and password data of almost 50,000 users

Data Breached personal information of as many as 500 million guests

Data Breached unknown amount of data exposed

Data Breached users of CoPay mobile cryptocoin wallet were targeted for cryptocoin theft, but none stolen

Data Breached 2.65 M patient records including names, addresses, dates of birth, invoice numbers, account balances, dates of service, insurance policy information and Social Security numbers

Data Breached potentially almost 6,000 individual’s personal info including name, address, postcode, email, phone, and encrypted password

Data Breached personal info of employees including names, SSNs and dates of birth, checking account and routing numbers, salaries, etc.

Data Breached 2,400 user accounts with payment information

Data Breached Social Security numbers of thousands of individuals who applied for a job

Data Breached Social Security numbers of thousands of individuals who applied for a job

Data Breached names and addresses of 4500 consumers

Data Breached potential theft of BTC from customers

Data Breached managed to launch DDoS attacks

Data Breached personal and payment card info of 30K employees and service members

Data Breached unknown amount of customers’ names and credit card numbers

Data Breached unknown amount of payment card info (still in investigation)

Data Breached Unknown amount of data

Data Breached Accounts of more than 50 million users compromised

Data Breached Sensitive information about MPs, journalist and conference attendees, including personal mobile numbers

Data Breached Names, addresses, passport and bank account of 3200 customers

Data Breached Financial and personal details of 380,000 customers

Data Breached Unauthorized access to 165K customers’ payment card information

Data Breached Names, employee IDs, physician’s name of hundreds of employees and retirees

Data Breached payment card data from customers of hundreds of e-commerce websites may have been stolen due to the compromise of the cloud service firm Feedify

Data Breached Teachers’ emails, usernames and passwords were exposed

Data Breached Names, their BCBSRI ID numbers, service providers, types of service provided and costs of claims for 1.5K customers

Data Breached cost the grocery chain over $900,000

Data Breached 7GB cache of data exposed with medical information for employees of 181 business locations and social security numbers for nearly 3000 individuals

Data Breached Data at risk of exposure includes names and email addresses, account profile info (plan value, # of alerts and mentions)

Data Breached The personal data of 2M patients was left exposed online

Data Breached Sensitive data on 31,000 GoDaddy servers exposed online

Data Breached Unknown amount of data

Data Breached Profile data, including names, email addresses and phone numbers, passport info, NEXUS numbers, dates of birth,etc.

Data Breached Customer’s email address, phone number and full bank account number and alert details

Data Breached 40K UK citizens’ info

Data Breached Access data: email addresses of current Reddit users and a 2007 database

Data Breached Passwords, usernames, contact info of millions

Data Breached Over 10K individuals’ names, credit card numbers, card expiration dates and security codes

Data Breached Any data submitted in the course of recruitment

Data Breached Personal data and credit card info of undisclosed number of customers

Data Breached Personal information of hundreds of patients

Data Breached No indication that any personal information was been accessed or viewed

Data Breached 5,6K customer info (PII)

Data Breached Internal FTP credentials, AWS Secret Keys/Passwords, the internal and SQL root password

Data Breached Credit card data belonging to an undisclosed number of customers

Data Breached Hundreds of thousands of customer data (per company)

Data Breached 19K patients’ records

Data Breached Credit card information from unknowing diners at more than 160 Applebee’s restaurants

Data Breached Undisclosed # of customers’ contact info, bank names, WU internal ID numbers, transaction amounts, times and ID numbers

Data Breached No access to Reddit’s systems or to any Redditors’ email accounts

Data Breached Credit card data belonging to an undisclosed number of customers

Data Breached Thousands of customer names and e-mails

Data Breached Credit card data belonging to an undisclosed number of customers at 41 hotels

Data Breached Confidential information of 57M Uber users (names, driver licence #, etc)

Data Breached Unknown

Data Breached Personal info (SSNs, names, addresses) of 143M consumers

Data Breached 14M customer data including account and personal info

Data Breached Credit card data belonging to an undisclosed number of customers at 11 hotels

Data Breached Unknown

Data Breached Personal info 200M voters

Data Breached Unknown (lost of hundreds of million dollars to ransonware)

Data Breached Tens of thousands (possibly up to millions) of patient records

Data Breached Unknown

Data Breached 14K patient info

Data Breached Unknown

Data Breached 14K patients’ sensitive info (name, address, SSNs, birth dates, medical info)

Data Breached 15M customer records (SSNs, birth dates, driver licence #, etc)

Data Breached Customers’ credit card and personal info

Data Breached Contact info for 76M households and 7M small business

Data Breached Current and former drivers’ records (SSNs, birth dates, driver licence #, etc)

Data Breached Records about 15K patients posted withoout authentication

Data Breached Data of 70M customers and 40M credit/debit card

Data Breached Personal Info of 100K individuals and 1000s of clients