Our Blog: Stuff we think you should know

Looking Back at 2019 Data Breaches

Looking Back at 2019 Data Breaches

Data is more of a commodity than it has ever been, and more often than not, companies spend a considerable sum on data security. Unfortunately, even the most well-defended organizations still have trouble keeping data safe. 2018 saw 446.5 million records exposed due to data breaches, even though the overall number of breaches dropped by 23 percent to 1,244 total. We’ll discuss some of the most notable breaches that have happened over the first four months of 2019.

January

Blur
A January 2nd data breach of an unsecured server at a password management company called Blur exposed a file containing the personal information of 2.4 million users, including names, email addresses, IP addresses, and encrypted passwords.

BenefitMall
An outsourced HR provider like BenefitMall is bound to have a ton of personal information stored on its infrastructure, and a security breach due to a phishing attack proved that to be the case. Over a period of four months, the names, addresses, Social Security numbers, dates of birth, bank account numbers, and even more information was exposed for over 110,000 users.

Ascension
A data analytics company called Ascension experienced an online database breach, leaving the personal information of over 24 million clients unprotected for over two weeks. The data revealed contains names, addresses, dates of birth, Social Security numbers, and financial information.

Other January breaches: Oklahoma Department of Securities, Managed Health Services of Indiana, Fortnite, Alaska Department of Health and Social Services, Rubrik.

February

500px
The online photography community 500px was hacked, affecting 14.8 million users. The breach revealed full names, usernames, email addresses, dates of birth, locations, and more.

Dunkin’ Donuts
Dunkin’ DonutsDunkin’ Donuts’ DD Perks rewards members found themselves victims of a data breach for the second time in three months, giving hackers access to customer accounts.

Coffee Meets Bagel
This dating website announced that they were hacked on Valentine’s Day, revealing the names and email addresses of six million users who had been registered since before May 2018.

University of Washington Medical Center
Almost one million patients have had their medical, personal, and financial information breached as a vulnerability on the organization’s website exposed sensitive information.

Other February breaches: Houzz, Catawba Valley Medical Center, Huddle House, EyeSouth Partners, Advent Health, Coinmama, UConn Health.

March

Dow Jones
2.4 million records by government officials and politicians were leaked online. This database was made up of individuals who could possibly embezzle money, accept bribes, or launder funds.

Health Alliance Plan
The electronic protected health information (ePHI) of over 120,000 patients was exposed following a ransomware attack. This ePHI contained names, addresses, dates of birth, ID numbers, claim information, and other identifiers.

Facebook
Facebook was forced to admit that they weren’t able to properly secure passwords of nearly 600 million users. These passwords were stored in plain text and could be accessed by any of the company’s 20,000 employees.

Federal Emergency Management Agency (FEMA)
Survivors of hurricanes Maria and Irma, as well as survivors of California’s wildfires, have all had their personal information exposed to a data breach. About 2.5 million victims have had their names, addresses, bank account numbers, and birth dates shared and left unprotected.

Verification.io
This particular breach is one of the largest in history, and it was found that Verification.io left a database filled with almost one billion email accounts and personal information on an unprotected server. The company has since closed down.

Other March breaches: Rush University Medical Center, Pasquotank-Camden EMS, Spectrum Health Lakeland, Rutland Regional Medical Center, Zoll Medical, MyPillow & Amerisleep, Oregon Department of Human Services.

April

Facebook (Again)
Two third-party applications containing Facebook datasets were left exposed online, resulting in over 540 million records, including account names, Facebook ID, and user activity being compromised.

City of Tallahassee
Nearly $500,000 was stolen from the city of Tallahassee employees’ paychecks, accomplished via redirecting direct deposits into unauthorized accounts.

Georgia Tech
Approximately 1.3 million users, including current and former faculty members, students, and college staff, had their personal information stolen from an unsecured server. Some of the files included names, Social Security numbers, and birthdates.

Steps to Recovery
The drug and alcohol recovery company has had nearly 145,000 patients’ files exposed.

Bodybuilding.com
One of the largest online retailers of fitness supplements was hacked, exposing the names, email addresses, billing/shipping addresses, phone numbers, and order histories of seven million registered users.

Other April breaches: EmCare, Microsoft Email Services, Prisma Health, Baystate Health.

If your organization hasn’t taken the time to properly address data security and privacy, there’s no reason to wait any longer. Reach out to Haber Group today at 866.625.3560 to learn more.

Tip of the Week: 4 Steps to Determine Your Needed ...
Would One of These Social Media Scams Bamboozle Yo...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, May 26 2019

Captcha Image

Mobile? Grab this Article!

Qr Code

Tag Cloud

Tip of the Week Security Best Practices Technology Cloud Privacy Business Email Hackers User Tips Malware Computer Business Computing Microsoft Productivity Hosted Solutions Network Security Software Google Internet Tech Term Data Small Business Mobile Devices Efficiency Communication IT Services Backup Hardware Ransomware Workplace Tips Windows 10 Smartphone Android IT Support Productivity Cloud Computing Microsoft Office Saving Money Data Management Facebook Browser Business Continuity Data Recovery Social Media Managed IT Services Windows Mobile Device Data Backup Server Users Office 365 Upgrade Phishing Internet of Things Word Managed IT Services Gmail Innovation App Passwords Windows 10 Disaster Recovery Smartphones Outsourced IT Encryption Network Chrome Vulnerability Cybersecurity Artificial Intelligence Miscellaneous communications Business Management Information Managed Service Provider VoIP Remote Monitoring Employer-Employee Relationship Save Money Office Tips Virtual Reality Hacker Apple Gadgets Tip of the week Analytics Content Filtering IT Support Spam Big Data Website Managed Service Government Money Infrastructure BYOD Applications Customer Service Augmented Reality IT Management WiFi Avoiding Downtime Maintenance Settings The Internet of Things Two-factor Authentication Data storage Paperless Office Virtualization Tablet Display Bandwidth Antivirus YouTube Employee-Employer Relationship Education Robot Risk Management Access Control Router Wireless Printing Apps Automation Firewall Mouse Vendor Management Telephone Systems Presentation LiFi Safety Computers Office Quick Tips Business Intelligence Storage Downtime Scam Wireless Technology Recovery Retail Hosted Solution SaaS Solid State Drive Company Culture Networking Outlook Unified Threat Management Hard Disk Drive VPN Monitors Holiday Search IBM Data Security HIPAA Data loss Business Technology Chromebook Mobile Device Management Development Virtual Private Network Administration Operating System Customer Relationship Management End of Support Hacking Server Management Wi-Fi Computing Google Drive Laptop Password Mobile Security Document Management Touchscreen IT Technicians File Sharing Wires Software as a Service Disaster Shortcut Bitcoin Network Congestion Online IoT Computer Care Digital Signage Unified Threat Management Downloads Solar Print Toner Statistics Best Practice telephony Break Fix Cookies Samsung 5G Monitoring Hard Disk Drives Spyware Superfish Information Technology Cooperation Google Docs Black Friday Regulations Halloween Messaging Address Writing Undo Hotspot Professional Services Websites Identity Theft Cortana Work Content Multi-Factor Security Mirgation Voice over Internet Protocol Entertainment Uninterrupted Power Supply Patch Management Windows 8 Marketing Microsoft Excel Star Wars Training Fun Desktop User Error Shortcuts Bluetooth Business Growth Application Dark Web Nanotechnology G Suite Spying Solid State Drives Google Wallet Staff Automobile Cyber Monday Social Networking Scary Stories Analysis Employee-Employer Relationships Corporate Profile Current Events Language USB Optimization Streaming Google Calendar Chatbots IP Address Cybercrime FinTech iOS Blockchain Cost Management Troubleshooting VoIP Legal Security Cameras Alt Codes Dark Data Net Neutrality Screen Reader How To Drones Printer Wearable Technology IT service Heating/Cooling Smart Technology Motherboard Remote Computing Sports Students WannaCry Going Green Social Engineering Computing Infrastructure Dongle Knowledge Recycling Human Error Legislation Identity Update Mobile Office MSP Scalability Social Hard Drives Permissions Assessment Time Management Managing Stress Managed Services Cabling Typing FCC Smart Tech PowerPoint Firefox BDR Servers Deep Learning Humor Distributed Denial of Service Mixed Reality Alerts Service Level Agreement Digital Payment Experience Unified Communications eWaste Device User Comparison Running Cable Migration Hacks Refrigeration Fraud Internet Exlporer Politics LED Network Management Collaboration Cables Laptops Managed IT Cryptocurrency Title II Connectivity Virtual Desktop Onboarding Techology Budget Public Speaking SharePoint Continuity Mobility Google Maps Bring Your Own Device sip Managed IT Service Modem Buisness Slack Data Breach Digital Lenovo How To Competition Licensing Private Cloud Specifications Compliance Lithium-ion battery Charging Mail Merge Value Tech Support IT solutions Smart Office Co-Managed IT Electronic Medical Records Work/Life Balance Error Black Market Point of Sale Regulation Mobile Computing Travel Law Enforcement Physical Security Notifications CrashOverride Upgrades Twitter Botnet Supercomputer Motion Sickness Gadget Staffing Crowdsourcing Taxes 3D Printing Personal Information Administrator Web Server Emergency Machine Learning IT Budget GPS Printers IT Consultant Unsupported Software Domains Computer Repair Processors Cameras Relocation Meetings Tracking Health Cleaning Mobile Data Alert CCTV Emoji Webcam Windows 7