Our Blog: Stuff we think you should know

Looking Back at 2019 Data Breaches

Looking Back at 2019 Data Breaches

Data is more of a commodity than it has ever been, and more often than not, companies spend a considerable sum on data security. Unfortunately, even the most well-defended organizations still have trouble keeping data safe. 2018 saw 446.5 million records exposed due to data breaches, even though the overall number of breaches dropped by 23 percent to 1,244 total. We’ll discuss some of the most notable breaches that have happened over the first four months of 2019.


A January 2nd data breach of an unsecured server at a password management company called Blur exposed a file containing the personal information of 2.4 million users, including names, email addresses, IP addresses, and encrypted passwords.

An outsourced HR provider like BenefitMall is bound to have a ton of personal information stored on its infrastructure, and a security breach due to a phishing attack proved that to be the case. Over a period of four months, the names, addresses, Social Security numbers, dates of birth, bank account numbers, and even more information was exposed for over 110,000 users.

A data analytics company called Ascension experienced an online database breach, leaving the personal information of over 24 million clients unprotected for over two weeks. The data revealed contains names, addresses, dates of birth, Social Security numbers, and financial information.

Other January breaches: Oklahoma Department of Securities, Managed Health Services of Indiana, Fortnite, Alaska Department of Health and Social Services, Rubrik.


The online photography community 500px was hacked, affecting 14.8 million users. The breach revealed full names, usernames, email addresses, dates of birth, locations, and more.

Dunkin’ Donuts
Dunkin’ DonutsDunkin’ Donuts’ DD Perks rewards members found themselves victims of a data breach for the second time in three months, giving hackers access to customer accounts.

Coffee Meets Bagel
This dating website announced that they were hacked on Valentine’s Day, revealing the names and email addresses of six million users who had been registered since before May 2018.

University of Washington Medical Center
Almost one million patients have had their medical, personal, and financial information breached as a vulnerability on the organization’s website exposed sensitive information.

Other February breaches: Houzz, Catawba Valley Medical Center, Huddle House, EyeSouth Partners, Advent Health, Coinmama, UConn Health.


Dow Jones
2.4 million records by government officials and politicians were leaked online. This database was made up of individuals who could possibly embezzle money, accept bribes, or launder funds.

Health Alliance Plan
The electronic protected health information (ePHI) of over 120,000 patients was exposed following a ransomware attack. This ePHI contained names, addresses, dates of birth, ID numbers, claim information, and other identifiers.

Facebook was forced to admit that they weren’t able to properly secure passwords of nearly 600 million users. These passwords were stored in plain text and could be accessed by any of the company’s 20,000 employees.

Federal Emergency Management Agency (FEMA)
Survivors of hurricanes Maria and Irma, as well as survivors of California’s wildfires, have all had their personal information exposed to a data breach. About 2.5 million victims have had their names, addresses, bank account numbers, and birth dates shared and left unprotected.

This particular breach is one of the largest in history, and it was found that Verification.io left a database filled with almost one billion email accounts and personal information on an unprotected server. The company has since closed down.

Other March breaches: Rush University Medical Center, Pasquotank-Camden EMS, Spectrum Health Lakeland, Rutland Regional Medical Center, Zoll Medical, MyPillow & Amerisleep, Oregon Department of Human Services.


Facebook (Again)
Two third-party applications containing Facebook datasets were left exposed online, resulting in over 540 million records, including account names, Facebook ID, and user activity being compromised.

City of Tallahassee
Nearly $500,000 was stolen from the city of Tallahassee employees’ paychecks, accomplished via redirecting direct deposits into unauthorized accounts.

Georgia Tech
Approximately 1.3 million users, including current and former faculty members, students, and college staff, had their personal information stolen from an unsecured server. Some of the files included names, Social Security numbers, and birthdates.

Steps to Recovery
The drug and alcohol recovery company has had nearly 145,000 patients’ files exposed.

One of the largest online retailers of fitness supplements was hacked, exposing the names, email addresses, billing/shipping addresses, phone numbers, and order histories of seven million registered users.

Other April breaches: EmCare, Microsoft Email Services, Prisma Health, Baystate Health.

If your organization hasn’t taken the time to properly address data security and privacy, there’s no reason to wait any longer. Reach out to Haber Group today at 866.625.3560 to learn more.

Tip of the Week: 4 Steps to Determine Your Needed ...
Would One of These Social Media Scams Bamboozle Yo...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Saturday, July 20 2019

Captcha Image

Mobile? Grab this Article!

Qr Code

Tag Cloud

Tip of the Week Security Best Practices Technology Cloud Privacy Hackers Business Email User Tips Microsoft Business Computing Malware Software Hosted Solutions Computer Network Security Google Productivity Internet Tech Term Communication Small Business Data Mobile Devices Efficiency IT Services Backup Ransomware Workplace Tips Hardware Windows 10 Cloud Computing Smartphone Data Recovery IT Support Microsoft Office Saving Money Android Upgrade Office 365 Productivity Data Management Information Facebook Windows Users Browser Managed IT Services Social Media Business Continuity Gmail Server Managed IT Services Phishing Mobile Device Word Data Backup Innovation Internet of Things App Outsourced IT Windows 10 Miscellaneous Smartphones Disaster Recovery Passwords Managed Service Provider VoIP Business Management Remote Monitoring Encryption Artificial Intelligence Network Chrome Employer-Employee Relationship communications Vulnerability Cybersecurity Apple Analytics Government Gadgets Infrastructure IT Support Spam Office Tips Website BYOD Hacker Money Content Filtering Apps Big Data Virtual Reality Applications Tip of the week Managed Service Save Money VPN WiFi Avoiding Downtime Unified Threat Management The Internet of Things Data storage Development Virtualization Augmented Reality Display Customer Service IT Management Settings Two-factor Authentication Robot Maintenance Printing Access Control Router Bandwidth Automation YouTube Tablet Firewall Education Antivirus Employee-Employer Relationship Risk Management Paperless Office Wireless LiFi Hard Disk Drive Presentation Administration Mobile Device Management Computers Data Security Customer Relationship Management Office Wi-Fi Storage Data loss Business Technology Holiday Laptop Wireless Technology Virtual Private Network Retail OneNote Recovery Server Management Chromebook Safety Collaboration Outlook Touchscreen Monitors Telephone Systems Downtime Document Management Hosted Solution HIPAA Operating System Quick Tips End of Support Scam Business Intelligence Bring Your Own Device Computing Hacking Google Drive Solid State Drive Search Password Mobile Security Networking Company Culture IBM Mouse Vendor Management SaaS Running Cable Google Docs Break Fix Cookies Writing Cooperation Time Management MSP Scalability Regulations Cabling Undo PowerPoint Updates Virtual Desktop Remote Computing Windows 8 Hotspot Professional Services Firefox Managing Stress Managed Services Black Friday Marketing BDR Servers Mixed Reality Buisness Update Business Growth Microsoft Excel Star Wars eWaste Device Google Wallet Multi-Factor Security Mirgation Lithium-ion battery Dark Web Nanotechnology LED IT solutions Current Events Staff Application Network Management Migration Cyber Monday Social Networking Managed IT Onboarding Language USB Techology Cables Laptops Digital Payment Legal Google Maps Slack Data Breach 5G Alt Codes Dark Data Blockchain Cost Management Digital Lenovo Continuity Mobility Politics Drones Google Calendar Chatbots Halloween Net Neutrality Screen Reader Mail Merge Smart Office Co-Managed IT Cortana Going Green Printer Social Engineering Wearable Technology Charging Smart Technology Motherboard Disaster Shortcut Digital Signage GDPR Fun Social Computing Infrastructure Dongle Unified Threat Management Wires Software as a Service Private Cloud Hard Drives Statistics Monitoring Hard Disk Drives Typing Permissions Assessment Spyware Superfish Solar Print Toner Tech Support Legislation Identity Messaging Scary Stories File Sharing Deep Learning Humor FCC Smart Tech Address Work Content Computer Care Distributed Denial of Service Uninterrupted Power Supply Patch Management Business Analysis Desktop Data Warehouse Samsung Hacks Alerts Service Level Agreement User Error Voice over Internet Protocol Entertainment IP Address Cybercrime Refrigeration Bluetooth Spying Solid State Drives Cryptocurrency Fraud Internet Exlporer User Shortcuts Websites Identity Theft Budget Comparison Analysis Employee-Employer Relationships Sports sip Title II Connectivity Corporate Profile Public Speaking Optimization Streaming Knowledge Training SharePoint How To Automobile Managed IT Service Modem Competition Troubleshooting G Suite Licensing VoIP FinTech iOS Mobile Office National Security Bitcoin Network Congestion Value How To Security Cameras Specifications Compliance Heating/Cooling Students Best Practice telephony Online IoT WannaCry Recycling Human Error Experience Unified Communications Information Technology Downloads IT Technicians IT service Personal Information Administrator Printers Crowdsourcing Taxes Mobile Computing Web Server Machine Learning IT Budget Physical Security GPS Upgrades Computer Repair IT Consultant Processors Cameras Relocation Meetings Tracking 3D Printing Windows 7 Health Cleaning Alert CCTV Emoji Webcam Unsupported Software Regulation Electronic Medical Records Domains Work/Life Balance Error Black Market Point of Sale CrashOverride Mobile Data Travel Law Enforcement Notifications Twitter Botnet Supercomputer Motion Sickness Emergency Gadget Staffing