34.9 million records compromised in data breaches and cyber attacks in June 2022
July 4, 2022 |
Itgovernance has identified 80 incidents in June 2022 which resulted in 34,908,053 records being compromised. The types of attacks vary as does the severity of the attacks.
Those breaches included:
- Shields Health Service suffering a cyber attack involving compromise of 2 million records;
- a human error in the form of an unauthorised person making available 2 million records on a hacking forum. The information offered was first and last name, Social Security number; Medicare beneficiary identification number; date of birth; address and contact information; and health insurance information
- .Baptist Medical Center and Resolute Health Hospital suffered a cyber attack involving 1,254,534 records. The information accessed included some or all of demographic information such as full name, date of birth, and address, Social Security number, health insurance information, such as name of insurer/government payor, policy and/or group numbe, medical information, such as medical record number, dates of service, provider and facility names, chief complaint or reason for visit, and other visit, procedure and diagnosis information; and billing and claims information, such as account and/or claim status, billing and diagnostic codes, and payor information.
- Flagstar Bank has data breach impacting 1.5 million customers.
- Yuma Regional Medical Center has ransomware attack affecting 700,000 patients;
- Perkins & Co suffered a data breach via an attack on a third party vendor, Netgain, which Perkins used for hosting its data in the cloud. A total of 354,647 records were compromised.
- Pegasus airlines leaked 6.5 terra bytes of personal information of flight crew. A total of 23 million records leaked. The information was left online.
- in Australia Icare, an insurer, leaked personal information relating to 193,000 injured workers to 587 employers and insurance brokers. The leak happened through a spreadsheet mistakenly attached to emails to wrong employers.
- in Japan a person doing work for Amagasaki city lost a USB storage device which had records of all of the city’s residents. He lost the device after having a drink or three at a restaurant.
- in Malaysia, the point of sale provider Storehub had a data leak exposing personal information of almost a million customers.
- there was a leak of gun owners personal information in California from the state’s Department of Justice. The information released included names, birthdates, gender, race, driver’s license numbers, addresses and criminal histories of people who were granted or denied permits to carry concealed weapons between 2011 and 2021.
- the insurer EMC National LIfe Company suffered a data breach involving 288,288 records.
Not included in that tally because it didn’t involve a loss of personal information was a cyber attack on Wiltshire Farm Foods in the UK which caused a mass disruption to its operation. That has had a knock on effect on the delivery of the 900,000 meals it supplies in a Meals on Wheels program.