Data Breaches

Interactive Brokers (IB), a prominent broker-dealer, reported a data breach in January that exposed sensitive consumer information. The disclosure came in a notice filed with the Massachusetts attorney general on May 16, detailing the breach's discovery and subsequent actions. According to Interactive Brokers, the breach occurred when an unauthorized party gained access to an employee’s...

The Police Service of Northern Ireland (PSNI) is facing a proposed £750,000 fine from the UK's Information Commissioner's Office (ICO) for a significant data breach last summer. The breach involved the inadvertent release of personal information about 9,483 PSNI officers and staff, which subsequently fell into the hands of dissident republicans and others. UK Information...

Superior Air-Ground Ambulance Service, Inc. (“Superior”) has disclosed a significant data breach affecting sensitive information of its consumers. On May 10, 2024, Superior filed a notice with the U.S. Department of Health and Human Services Office for Civil Rights, detailing that an unauthorized actor accessed and copied files from its IT network. This breach...

Patriot Mobile, a U.S.-based cell carrier, has confirmed a data breach compromising the personal information of its subscribers. The breach, which includes full names, email addresses, home ZIP codes, and account PINs, affects the company's subscriber base of fewer than 100,000 customers. This incident was uncovered by TechCrunch, which also verified the authenticity of...

Nissan North America has confirmed a significant data breach affecting more than 53,000 current and former employees, following a targeted cyber-attack that was first discovered in November 2023. The breach, initially believed to involve only corporate information, was found to include personal data, according to a detailed investigation involving third-party cyber forensics experts and...

Banco Santander S.A., one of the world's largest financial organizations, has reported a data security incident compromising sensitive personal information of all its employees and some customers in Europe. The breach involved unauthorized access to a database hosted by a third-party provider. In its recent announcement, Santander confirmed that the breach affected customers from Santander...

On May 14, 2024, Alexion Pharmaceuticals disclosed a data breach involving its vendor Cisiv, Ltd., affecting sensitive information of individuals who participated in surveys regarding Alexion’s products. The breach was reported to the Attorney General of Vermont, detailing that the compromised data includes names, addresses, email addresses, phone numbers, and survey responses. The security incident...

On May 20, 2024, El Centro Del Barrio, operating as CentroMed, reported a significant data breach to the Texas Attorney General, revealing that an unauthorized party accessed the confidential information of approximately 400,000 current and former patients. The compromised data includes names, addresses, dates of birth, Social Security numbers, financial account information, medical records...

Christie’s, one of the world’s leading art auction houses, experienced a cyberattack last week that took its website offline, though it did not disrupt scheduled auctions. The incident occurred during a peak auction week, forcing the company to shift all bidding to in-person and phone methods. Despite the digital setback, auctions featuring an estimated...

Australian e-prescription provider MediSecure has reported a data security incident that has compromised personal and health information of numerous individuals, forcing the company to take its official website offline. The breach is believed to have originated from one of MediSecure's third-party service providers. In a cyber security notice, MediSecure announced that it has launched an...

WebTPA, a prominent provider of administrative services for health plans and insurers, has disclosed a significant data breach that exposed the personal information of over 2.4 million individuals. The breach occurred between April 18 and April 23, 2023, with details emerging from an undated website notice and notifications to affected parties. The compromised data includes...

A new class action lawsuit has been filed against Dropbox, accusing the tech company of failing to protect thousands of customers from a significant data breach. The lawsuit, initiated by plaintiff Steven Guiffre, claims that Dropbox neglected to implement necessary security measures to prevent a breach that occurred on or before April 24. This lawsuit...

Home Depot, the renowned home improvement retailer operating across the United States, Canada, and Mexico, has revealed a concerning data breach affecting a subset of its employees' personal information. The breach, attributed to a third-party Software-as-a-Service (SaaS) vendor, came to light after a leak exposed the personal data of approximately 10,000 Home Depot employees. The...

HBL CPAs, P.C., a reputable accounting firm headquartered in Tucson, Arizona, has reported a data breach incident to the Attorney General of Montana, uncovering unauthorized access to certain files stored on the company's computer network. The breach, discovered on November 30, 2023, prompted immediate action from HBL, including securing its systems, notifying the FBI,...

SysInformation Healthcare Services, LLC, operating as EqualizeRCM and 1st Credentialing, has notified the Attorney General of Montana regarding a significant data breach discovered on April 17, 2024. The breach exposed confidential information stored on the company's computer network, including a wide array of sensitive consumer data such as names, Social Security numbers, government identification...