This post was originally published on Twitter as a Tweet on 3 March 2013:
Breaches of personal privacy and information loss are well documented and archived at Attrition.org Data Loss Archive and Database (DLDOS) at http://attrition.org/dataloss/. I mentioned this in a recent post, but it deserves its own.
http://attrition.org/dataloss/
This is what happens when politicians and regulators fail to take action.
Everyone is at risk. Russia and North Korea are taking no action to stop hacking since they are two of the top countries where is this occurring.
Data Breeches 2004 – 2018 from Wikipedia
|
Entity |
Year |
Records |
Organization type |
Method |
|
| Centers for Medicare & Medicaid Services | 2018 | 75,000 | healthcare | hacked | |
| 2018 | 50,000,000 | social network | poor security | ||
| Ticketfly (subsidiary of Eventbrite) | 2018 | 26,151,608 | ticket distribution | hacked | |
| AerServ (subsidiary of InMobi) | 2018 | 75,000 | advertising | hacked | |
| MyHeritage | 2018 | 92,283,889 | genealogy | unknown | |
| Google Plus | 2018 | 500,000 | social network | poor security | |
| 21st Century Oncology | 2016 | 2,200,000 | healthcare | hacked | |
| BMO and Simplii | 2018 | 90,000 | banking | poor security | |
| Accendo Insurance Co. | 2011 | 175,350 | healthcare | poor security | |
| Adobe Systems | 2013 | 152,000,000 | tech | hacked | |
| Advocate Medical Group | 2013 | 4,000,000 | healthcare | lost / stolen media | |
| Affinity Health Plan, Inc. | 2009 | 344,579 | healthcare | lost / stolen media | |
| Ameritrade | 2005 | 200,000 | financial | lost / stolen media | |
| Ankle & Foot Center of Tampa Bay, Inc. | 2010 | 156,000 | healthcare | hacked | |
| Anthem Inc. | 2015 | 80,000,000 | healthcare | hacked | |
| AOL | 2004 | 92,000,000 | web | inside job, hacked | |
| AOL | 2006 | 20,000,000 | web | accidentally published | |
| AOL | 2014 | 2,400,000 | web | hacked | |
| Apple, Inc./BlueToad | 2012 | 12,367,232 | tech, retail | accidentally published | |
| Apple | 2013 | 275,000 | tech | hacked | |
| Apple Health Medicaid | 2016 | 91,000 | healthcare | poor security | |
| Ashley Madison | 2015 | 32,000,000 | web | hacked | |
| AT&T | 2008 | 113,000 | telecoms | lost / stolen computer | |
| AT&T | 2010 | 114,000 | telecoms | hacked | |
| Auction.co.kr | 2008 | 18,000,000 | web | hacked | |
| Australian Immigration Department | 2015 | G20 world leaders | government | accidentally published | |
| Automatic Data Processing | 2005 | 125,000 | financial | poor security | |
| AvMed, Inc. | 2009 | 1,220,000 | healthcare | lost / stolen computer | |
| Bailey’s Inc. | 2015 | 250,000 | retail | hacked | |
| Barnes & Noble | 2012 | 63 stores | retail | hacked | |
| Bedford/St. Martin’s | 2012-2014 | unknown | retail | unknown | |
| Betfair | 2010 | 2,300,000 | web | hacked | |
| Bethesda Game Studios | 2011 | 200,000 | gaming | hacked | |
| Blizzard Entertainment | 2012 | 14,000,000 | gaming | hacked | |
| BlueCross BlueShield of Tennessee | 2009 | 1,023,209 | healthcare | lost / stolen media | |
| The Bank of New York Mellon | 2008 | 12,500,000 | financial | lost / stolen media | |
| British Airways | 2015 | tens of thousands | retail | hacked | |
| California Department of Child Support Services | 2012 | 800,000 | government | lost / stolen media | |
| CardSystems Solutions Inc.
(MasterCard, Visa, Discover Financial Services and American Express) |
2005 | 40,000,000 | financial | hacked | |
| CareFirst BlueCross Blue Shield – Maryland | 2015 | 1,100,000 | healthcare | hacked | |
| Central Coast Credit Union | 2016 | 60,000 | financial | hacked | |
| Central Hudson Gas & Electric | 2013 | 110,000 | energy | hacked | |
| CheckFree Corporation | 2009 | 5,000,000 | financial | hacked | |
| China Software Developer Network | 2011 | 6,000,000 | web | hacked | |
| Chinese gaming websites (three: Duowan, 7K7K, 178.com | 2011 | 10,000,000 | web | hacked | |
| Citigroup | 2005 | 3,900,000 | financial | lost / stolen media | |
| Citigroup | 2011 | 360,083 | financial | hacked | |
| Citigroup | 2013 | 150,000 | financial | poor security | |
| City and Hackney Teaching Primary Care Trust | 2007 | 160,000 | healthcare | lost / stolen media | |
| Colorado government | 2010 | 105,470 | healthcare | lost / stolen computer | |
| Community Health Systems | 2014 | 4,500,000 | healthcare | hacked | |
| Philippines Commission on Elections | 2016 | 55,000,000 | government | hacked | |
| Compass Bank | 2007 | 1,000,000 | financial | inside job | |
| Countrywide Financial Corp | 2006 | 2,600,000 | financial | inside job | |
| Countrywide Financial Corp | 2011 | 2,500,000 | financial | inside job | |
| Cox Communications | 2016 | 40,000 | telecoms | hacked | |
| Crescent Health Inc., Walgreens | 2013 | 100,000 | healthcare | lost / stolen computer | |
| CVS | 2015 | millions | retail | hacked | |
| Dai Nippon Printing | 2007 | 8,637,405 | retail | inside job | |
| Data Processors International
(MasterCard, Visa, Discover Financial Services and American Express) |
2008 | 8,000,000 | financial | hacked | |
| Defense Integrated Data Center (South Korea) | 2017 | 235 GB | military | hacked | |
| Deloitte | 2017 | consulting, accounting | poor security | ||
| Democratic National Committee | 2016 | 19,252 | political | ||
| US Department of Homeland Security | 2016 | 30,000 | government | poor security | |
| Domino’s Pizza (France) | 2014 | 600,000 | web | hacked | |
| UK Driving Standards Agency | 2007 | 3,000,000 | government | lost / stolen media | |
| Dropbox | 2012 | unknown | web | hacked | |
| Drupal | 2013 | 1,000,000 | web | hacked | |
| Dun & Bradstreet | 2013 | 1,000,000 | tech | hacked | |
| eBay | 2014 | 145,000,000 | web | hacked | |
| Educational Credit Management Corporation | 2010 | 3,300,000 | financial | lost / stolen media | |
| Eisenhower Medical Center | 2011 | 514,330 | healthcare | lost / stolen computer | |
| Embassy Cables | 2010 | 251,000 | government | inside job | |
| Emergency Healthcare Physicians, Ltd. | 2010 | 180,111 | healthcare | lost / stolen media | |
| Emory Healthcare | 2012 | 315,000 | healthcare | poor security | |
| Erie County Medical Center | 2017 | unknown | healthcare | poor security | |
| Equifax | 2017 | 143,000,000 | financial, credit reporting | poor security | |
| European Central Bank | 2014 | unknown | financial | hacked | |
| Evernote | 2013 | 50,000,000 | web | hacked | |
| Excellus BlueCross BlueShield | 2015 | 10,000,000 | healthcare | hacked | |
| Experian – T-Mobile US | 2015 | 15,000,000 | telecoms | hacked | |
| EyeWire | 2016 | unknown | tech | lost / stolen computer | |
| 2013 | 6,000,000 | web | accidentally published | ||
| Federal Reserve Bank of Cleveland | 2010 | 400,000 | financial | hacked | |
| Fidelity National Information Services | 2007 | 8,500,000 | financial | inside job | |
| Florida Department of Juvenile Justice | 2013 | 100,000 | government | lost / stolen computer | |
| Friend Finder Networks | 2016 | 412,214,295 | web | poor security / hacked | |
| Formspring | 2012 | 420,000 | web | accidentally published | |
| Gamigo | 2012 | 8,000,000 | web | hacked | |
| Gap Inc. | 2007 | 800,000 | retail | lost / stolen computer | |
| Gawker | 2010 | 1,500,000 | web | hacked | |
| Global Payments | 2012 | 7,000,000 | financial | hacked | |
| Gmail | 2014 | 5,000,000 | web | hacked | |
| Greek government | 2012 | 9,000,000 | government | hacked | |
| Grozio Chirurgija | 2017 | 25,000 | healthcare | hacked | |
| GS Caltex | 2008 | 11,100,000 | energy | inside job | |
| Gyft | 2016 | unknown | web | hacked | |
| Hannaford Brothers Supermarket Chain | 2007 | 4,200,000 | retail | hacked | |
| Health Net | 2009 | 500,000 | healthcare | lost / stolen media | |
| Health Net — IBM | 2011 | 1,900,000 | healthcare | lost / stolen media | |
| Heartland | 2009 | 130,000,000 | financial | hacked | |
| Heathrow Airport | 2017 | 2.5GB | transport | lost / stolen media | |
| Hewlett Packard | 2006 | 200,000 | tech, retail | lost / stolen media | |
| Hilton Hotels | 2015 | unknown | hotel | hacked | |
| Home Depot | 2014 | 56,000,000 | retail | hacked | |
| Honda Canada | 2011 | 283,000 | retail | poor security | |
| Hyatt Hotels | 2015 | 250 locations | hotel | hacked | |
| Internal Revenue Service | 2015 | 720,000 | financial | hacked | |
| Inuvik hospital | 2016 | 6,700 | healthcare | inside job | |
| Iranian banks (three: Saderat, Eghtesad Novin, and Saman) | 2012 | 3,000,000 | financial | hacked | |
| Jefferson County, West Virginia | 2008 | 1,600,000 | government | accidentally published | |
| JP Morgan Chase | 2010 | 2,600,000 | financial | lost / stolen media | |
| JP Morgan Chase | 2014 | 76,000,000 | financial | hacked | |
| KDDI | 2006 | 4,000,000 | telecoms | hacked | |
| Kirkwood Community College | 2013 | 125,000 | academic | hacked | |
| KM.RU | 2016 | 1,500,000 | web | hacked | |
| Korea Credit Bureau | 2014 | 20,000,000 | financial | inside job | |
| Kroll Background America | 2013 | 1,000,000 | tech | hacked | |
| KT Corporation | 2012 | 8,700,000 | telecoms | hacked | |
| LexisNexis | 2014 | 1,000,000 | tech | hacked | |
| Landry’s, Inc. | 2015 | 500 locations | restaurant | hacked | |
| Lincoln Medical & Mental Health Center | 2010 | 130,495 | healthcare | lost / stolen media | |
| LinkedIn, eHarmony, Last.fm | 2012 | 8,000,000 | web | accidentally published | |
| Living Social | 2013 | 50,000,000 | web | hacked | |
| MacRumors.com | 2014 | 860,000 | web | hacked | |
| Mandarin Oriental Hotels | 2014 | 10 locations | hotel | hacked | |
| Massachusetts Government | 2011 | 210,000 | government | poor security | |
| Massive American business hack | 2012 | 160,000,000 | financial | hacked | |
| US Medicaid | 2012 | 780,000 | government, healthcare | hacked | |
| Medical Informatics Engineering | 2015 | 3,900,000 | healthcare | hacked | |
| Memorial Healthcare System | 2011 | 102,153 | healthcare | lost / stolen media | |
| Michaels | 2014 | 3,000,000 | retail | hacked | |
| Militarysingles.com | 2012 | 163,792 | web, military | accidentally published | |
| Ministry of Education (Chile) | 2008 | 6,000,000 | government | accidentally published | |
| Monster.com | 2007 | 1,600,000 | web | hacked | |
| Morgan Stanley Smith Barney | 2011 | 34,000 | financial | lost / stolen media | |
| Mozilla | 2014 | 76,000 | web | poor security | |
| NASDAQ | 2014 | unknown | financial | hacked | |
| Natural Grocers | 2015 | 93 stores | retail | hacked | |
| Neiman Marcus | 2014 | 1,100,000 | retail | hacked | |
| Nemours Foundation | 2011 | 1,055,489 | healthcare | lost / stolen media | |
| Network Solutions | 2009 | 573,000 | tech | hacked | |
| New York City Health & Hospitals Corp. | 2010 | 1,700,000 | healthcare | lost / stolen media | |
| New York State Electric & Gas | 2012 | 1,800,000 | energy | inside job | |
| New York Taxis | 2014 | 52,000 | transport | poor security | |
| Nexon Korea Corp | 2011 | 13,200,000 | web | hacked | |
| NHS | 2011 | 8,300,000 | healthcare | lost / stolen media | |
| Nintendo | 2013 | 240,000 | gaming | hacked | |
| Nival Networks | 2016 | 1,500,000 | gaming | hacked | |
| Norwegian Tax Administration | 2008 | 3,950,000 | government | accidentally published | |
| Ofcom | 2016 | unknown | telecom | inside job | |
| US Office of Personnel Management | 2015 | 21,500,000 | government | hacked | |
| Office of the Texas Attorney General | 2012 | 6,500,000 | government | accidentally published | |
| Ohio State University | 2010 | 760,000 | academic | hacked | |
| Orbitz | 2018 | 880,000 | web | hacked | |
| Oregon Department of Transportation | 2011 | unknown | government | poor security | |
| OVH | 2013 | undisclosed | web | hacked | |
| Popsugar | 2018 | 123,857 | fashion | hacked | |
| Premera | 2015 | 11,000,000 | healthcare | hacked | |
| Puerto Rico Department of Health | 2010 | 515,000 | healthcare | hacked | |
| Rambler.ru | 2012 | 98,167,935 | web | hacked | |
| RBS Worldpay | 2008 | 1,500,000 | financial | hacked | |
| Restaurant Depot | 2011 | 200,000 | retail | hacked | |
| RockYou! | 2009 | 32,000,000 | web, gaming | hacked | |
| Rosen Hotels | 2016 | unknown | hotel | hacked | |
| San Francisco Public Utilities Commission | 2011 | 180,000 | government | hacked | |
| Scottrade | 2015 | 4,600,000 | financial | hacked | |
| Scribd | 2013 | 500,000 | web | hacked | |
| Seacoast Radiology, PA | 2010 | 231,400 | healthcare | hacked | |
| Sega | 2011 | 1,290,755 | gaming | hacked | |
| Service Personnel and Veterans Agency (UK) | 2008 | 50,500 | government | lost / stolen media | |
| Slack | 2015 | 500,000 | tech | poor security | |
| SnapChat | 2013 | 4,700,000 | web, tech | hacked | |
| Sony Online Entertainment | 2011 | 24,600,000 | gaming | hacked | |
| Sony Pictures | 2011 | 1,000,000 | web | hacked | |
| Sony Pictures | 2014 | 100 terabytes | media | hacked | |
| Sony PlayStation Network | 2011 | 77,000,000 | gaming | hacked | |
| South Africa police | 2013 | 16,000 | government | hacked | |
| South Carolina Government | 2012 | 6,400,000 | healthcare | inside job | |
| South Shore Hospital, Massachusetts | 2010 | 800,000 | healthcare | lost / stolen media | |
| Southern California Medical-Legal Consultants | 2011 | 300,000 | healthcare | hacked | |
| Spartanburg Regional Healthcare System | 2011 | 400,000 | healthcare | lost / stolen computer | |
| Stanford University | 2008 | 72,000 | academic | lost / stolen computer | |
| Starbucks | 2008 | 97,000 | retail | lost / stolen computer | |
| Starwood Hotels
including Westin Hotels and Sheraton Hotels |
2015 | 54 locations | hotel | hacked | |
| State of Texas | 2011 | 3,500,000 | government | accidentally published | |
| Steam | 2011 | 35,000,000 | web | hacked | |
| Stratfor | 2011 | 935,000 | military | accidentally published | |
| Supervalu | 2014 | 200 stores | retail | hacked | |
| Sutter Medical Center | 2011 | 4,243,434 | healthcare | lost / stolen computer | |
| Syrian government (Syria Files) | 2012 | 2,434,899 | government | hacked | |
| Taobao | 2016 | 20,000,000 | retail | hacked | |
| Taringa! | 2017 | 28,722,877 | web | hacked | |
| Target Corporation | 2014 | 70,000,000 | retail | hacked | |
| TaxSlayer.com | 2016 | unknown | web | hacked | |
| TD Ameritrade | 2007 | 6,300,000 | financial | hacked | |
| TD Bank | 2012 | 260,000 | financial | hacked | |
| TerraCom & YourTel | 2013 | 170,000 | telecoms | accidentally published | |
| Texas Lottery | 2007 | 89,000 | government | inside job | |
| Tianya Club | 2011 | 28,000,000 | web | hacked | |
| TK / TJ Maxx | 2007 | 94,000,000 | retail | hacked | |
| T-Mobile, Deutsche Telecom | 2006 | 17,000,000 | telecoms | lost / stolen media | |
| Tricare | 2011 | 4,901,432 | military, healthcare | lost / stolen computer | |
| Triple-S Salud, Inc. | 2010 | 398,000 | healthcare | lost / stolen media | |
| Trump Hotels | 2014 | 8 locations | hotel | hacked | |
| Tumblr | 2013 | 65,469,298 | web | hacked | |
| Twitch.tv | 2015 | unknown | tech | hacked | |
| 2013 | 250,000 | web | hacked | ||
| Uber | 2014 | 50,000 | tech | poor security | |
| Uber | 2017 | 57,000,000 | transport | hacked | |
| Ubisoft | 2013 | unknown | gaming | hacked | |
| Ubuntu | 2013 | 2,000,000 | tech | hacked | |
| UK Home Office | 2008 | 84,000 | government | lost / stolen media | |
| UK Ministry of Defence | 2008 | 1,700,000 | government | lost / stolen media | |
| UK Revenue & Customs | 2007 | 25,000,000 | government | lost / stolen media | |
| Under Armour | 2018 | 150,000,000 | Consumer Goods | hacked | |
| University of California, Berkeley | 2009 | 160,000 | academic | hacked | |
| University of California, Berkeley | 2016 | 80,000 | academic | hacked | |
| University of Maryland, College Park | 2014 | 300,000 | academic | hacked | |
| UCLA Medical Center, Santa Monica | 2015 | 4,500,000 | healthcare | hacked | |
| University of Central Florida | 2016 | 63,000 | academic | hacked | |
| University of Miami | 2008 | 2,100,000 | academic | lost / stolen computer | |
| University of Utah Hospital & Clinics | 2008 | 2,200,000 | academic | lost / stolen media | |
| University of Wisconsin–Milwaukee | 2011 | 73,000 | academic | hacked | |
| UPS | 2014 | 51 locations | retail | hacked | |
| U.S. Army | 2011 | 50,000 | military | accidentally published | |
| U.S. Army | 2010 | 392,000 | government | inside job | |
| U.S. Department of Defense | 2009 | 72,000 | military | lost / stolen media | |
| U.S. Department of Veteran Affairs | 2006 | 26,500,000 | government, military | lost / stolen computer | |
| U.S. law enforcement (70 different agencies) | 2011 | 123,461 | government | accidentally published | |
| National Archives and Records Administration (U.S. military veterans’ records) | 2009 | 76,000,000 | military | lost / stolen media | |
| U.S. government (United States diplomatic cables leak) | 2010 | 260,000 | military | inside job | |
| National Guard of the United States | 2009 | 131,000 | military | lost / stolen computer | |
| Verizon Communications | 2016 | 1,500,000 | telecoms | hacked | |
| Virginia Department of Health | 2009 | 8,257,378 | government, healthcare | hacked | |
| Virginia Prescription Monitoring Program | 2009 | 531,400 | healthcare | hacked | |
| Vodafone | 2013 | 2,000,000 | telecoms | inside job | |
| VTech | 2015 | 5,000,000 | retail | hacked | |
| Walmart | 2015 | millions | retail | hacked | |
| Washington Post | 2011 | 1,270,000 | media | hacked | |
| Washington State court system | 2013 | 160,000 | government | hacked | |
| Weebly | 2016 | 43,430,316 | web | hacked | |
| Wendy’s | 2015 | unknown | restaurant | hacked | |
| Writerspace.com | 2011 | 62,000 | web | hacked | |
| Xat.com | 2015 | 6,054,459 | web | social engineering | |
| Yahoo | 2013 | 3,000,000,000 | web | hacked | |
| Yahoo | 2014 | 500,000,000 | web | hacked | |
| Yahoo Japan | 2013 | 22,000,000 | tech, web | hacked | |
| Yahoo! Voices | 2012 | 450,000 | web | hacked | |
| Yale University | 2010 | 43,000 | academic | accidentally published | |
| Zappos | 2012 | 24,000,000 | web | hacked | |
| Bank of America | 2005 | 1,200,000 | financial | lost / stolen media | |
| DSW Inc. | 2005 | 1,400,000 | retail | hacked | |
| Ancestry.com | 2015 | 300,000 | web | poor security | |
| SingHealth | 2018 | 1,500,000 | government, database | hacked | |
| British Airways | 2018 | 380,000 | transport | hacked |
