Recent Data Breaches 2007
SAIC - Electronic Breach - 867,000 exposed records
The breach occured when SAIC transmitted information from 580,000 households over the Internet in and uncrypted form. They company said that a household may hold more than one person. The data was stored on a single unsecured server. The company said it was notified on May 29 by the U.S. Air Force in Europe that it had detected and unsecured transmission of the information.
City of Virginia Beach - Paper Breach - 2,000 exposed records
A former employee of the company Flexible Benefits Administrators compromised about 2,000 Virginia Beach employees. When the police searched his house they found lists of names and SSN's of school employees.
Western Union - Electronic Breach - 20,000 exposed records
The Western Union database was attacked by hackers and the personal information of 20,000 customers was breached. Some of the leaked information includes names, addresses and complete credit card information.
Chase/Bank One - Paper Data - 4,100 exposed records
A list of former and current employees was found on a desk and sold by a used furniture store in Sherveport. The list had the names and SSN's of these people. A notebook containing names and SSN's also was found. It was from a former Bank One that in July 2005 joined up with Chase. (Names of customers were NOT on the list)
Fidelity National Information Services/Certegy Check - Electronic Breach - 8,500,000 exposed records
A former employee from Certegy Check Services stole 2.3 million consumer records including credit card and bank account numbers. As of 6/3/07 (first reports), it is not known if SSN's are involved. About 2.2 million bank account records were stolen and 99,000 credit card records were taken. Some were sold according to the Fidelity. As of 7/25/07 Fidelity believes that 8.5 million consumer records are involved according to a SEC filing- 5.7 million checking and 1.5 million credit cards.
F.E.M.A.(Federal Emergency Management Agency) - Paper Data - 2,300 exposed records
FEMA mistakenly included the SSNs on the outside of envelopes sent to Disaster Assistance Employees. A letter was sent to all those involved.