Hackers and cybercriminals had a successful month in August, and seemingly no industry was spared from a data breach. Were you or your family impacted?
Here are the recent data breaches that made headlines in August 2018:
If you haven’t changed your password in years, you want to consider doing so. Hackers were able to access Reddit’s system, stealing current email addresses and passwords dating back to 2007.
Credit card issuer, TCM Bank, announced a website misconfiguration that exposed the names, addresses, dates of birth, and Social Security numbers of nearly 10,000 customers. Those affected had applied for credit cards between March 2017 and July 2018.
SSM Health St. Mary’s Hospital
In yet another massive healthcare data breach, Missouri-based SSM Health St. Mary’s Hospital exposed the personal health information of 301,000 patients after improperly disposing of documents and other materials at a location that was set for demolition.
Adams County, WI
The names, addresses, birthdays, phone numbers, fax numbers, email addresses, Social Security numbers, medical record numbers, driver’s license numbers, license plate numbers, fingerprints, and photographs of more than 250,000 people may have been exposed after breach of Adams County’s computer systems. Multiple county departments were involved in the breach, which occurred between January 2013 and March 2018.
MedSpring Urgent Care
An employee of Austin, TX-based MedSpring Urgent Care clicked on a phishing link, causing a breach of the healthcare provider’s system. More than 13,000 patients’ information was involved, including names, account numbers, medical record numbers, and dates of medical service.
Thousands of Instagram users have reported their accounts being hijacked and email information changed to .ru (Russian) domains. The reasoning behind these takeovers is unclear, but it has certainly caused frustration for users trying to regain control of their account.
Patients of Augusta University Health, Augusta University Medical Center, Children’s Hospital of Georgia, and more than 80 outpatient clinics around the state are victims of a data breach. Several university email accounts were compromised in a phishing attack, exposing 417,000 peoples’ demographic information, medical record numbers, treatment information, surgical details, diagnoses, medications, insurance information, Social Security numbers, and driver’s license numbers.
Eastern Maine Community College
A computer virus has caused data breach affecting the students and staff of Eastern Maine Community College. It’s estimated that the personal information of 42,000 people, including usernames, passwords, email addresses, names, SSNs, and dates of birth may have been accessed.
Portland, Oregon-based health system, Legacy health experienced a data breach affecting about 38,000 patients. The information exposed includes patient names, dates of birth, health insurance information, billing information, Social Security numbers, and driver’s license information.
Cheddar’s Scratch Kitchen
If you dined at Cheddar’s Scratch Kitchen between November 2017 and January 2018, you may want to audit your credit card statements. An unauthorized third party accessed the restaurant’s payment system, potentially compromising the payment card information of 576,000 customers.
A security flaw on the popular babysitter booking app, Sitter, potentially exposed the personal data of 93,000 users. The unsecured information included phone numbers, addresses, transaction details, phone contacts, partial credit card numbers, and encrypted passwords.
The largest data breach announced in August affected 2 million T-Mobile customers. Hackers stole personal data including names, billing zip codes, phone numbers, email addresses, account numbers, and account types. It does not appear that any financial information was compromised.
About 20,000 users of Air Canada’s mobile app may have been affected in a data breach. Names, email addresses, telephone numbers, Aeroplan numbers, passport information, and dates of birth are among the information potentially exposed. The airline has temporarily locked down all 1.7 million of its app users accounts.
Be sure to check back next month for the latest major data breaches in 2018.