Database SecurityFortinet Database Security Software is a cost-effective, automated solution for improving data security within enterprises by eliminating vulnerabilities in passwords, access privileges, configuration settings, and more. This centralized web-based application ensures consistent database security policies across the organization.
It has built-in expert knowledge of database, application security and compliance requirements. It provides businesses with an efficient foundation for compliance and security programs.
The list on this page lists some notable publicly disclosed database breaches.
University of California San Diego Moores Cancer CenterRecords: 30000
30,000 patient personal information on a database server were accessed by a hacker. The information includes patients' names, birth dates and diagnosis and treatment dates
An organized-crime family may have gained access to some of the sensitive consumer databases. The personal information of more than 13,000 consumers might have been compromised.
A temporary employee for AT&T stole personal information on 2,100 co-workers. The information includes social security numbers, and birth dates.
Alberta Health Services EdmontonRecords: 11582
Personal health information of 11,582 was compromised by a computer virus on the network.
American Express (Technologies)Records: N/A
DBA stole thousands of American Express card numbers, created bogus cards, and swindled more than a million dollars from customers.
Sutter HealthRecords: 6000
The names and SSNs of 6,000 Sutter Health employees stored on a laptop got compromised.
University of Alberta HospitalRecords: 250000
Two laptops containing 250,000 patients private information were stolen.
Florida Department of RevenueRecords: 2828
The personal information including name, address, and SSN of 2,828 people was compromised via a stolen flash.
Beam Global Spirits & Wine IncRecords: N/A
Unauthorized database access by a former employee exposes names, addresses, and social security numbers of past and present employees
JFY NetworksRecords: N/A
Unauthorized access by a hacker through a website exposes names, mailing addresses, email addresses, phone numbers, and social security numbers of the the job training and education program applicants
Virginia Department of Health ProfessionsRecords: 531400
A prescription drug database was hacked on April 30th. About 531,400 people's social security numbers may have been compromised.
Aetna Inc.Records: 65000
65,000 former and current employees names, security numbers, and contact information got exposed to the website.
Indiana Department of Workforce DevelopmentRecords: 4500
Accidental disclosure of 4,500 people's Social Security number to the incorrect employers. About 1,200 companies received incorrect statements.
New Jersey Department of Labor and Workforce DevelopmentRecords: 28000
Due to a clerical error possibly sending their Social Security numbers to employers whom they did not work for, 28,000 people's personal information may have been compromised
University of California BerkeleyRecords: 160000
160,000 Social Security numbers and other identification had been hacked from restricted university health services databases. of which 97,000 had their Social Security numbers illegally accessed
Kapiolani Community CollegeRecords: 15487
The personal information including names, addresses, phone numbers, dates of birth and social security numbers of 15,487 students was exposed through a computer infected with malware that can steal sensitive data.
A breach of database resulted in 32,000 people's personal information including names, birth dates, and socail security numbers accessed by unauthorized individuals. The 300 people had personal information used fraudulently
Fox Entertainment GroupRecords: N/A
The personal information of unknown number of employees, including names, social security number, compensation information was accessed by an unauthorized employee.
Policy Studies, IncRecords: 1600
A former contractor stole 1,600 names, social security numbers, bank accounts from a database filled with personal identification information.
Massey UniversityRecords: 200
The personal information of 200 students, including ID numbers, names, dates of birth, IRD numbers, transcripts, and contact addresses and phone numbers, was exposed on the intranet
Central Ohio Transit AuthorityRecords: 900
The names and security numbers of more than 900 current and former COTA employees were sent to 51 companies proposing to bid on providing long term disability insurance to COTA
Shell OilRecords: 5900
The hackers obtained 5900 customer information contained in online application forms for Shell Fuel Card, including names, address details, email addresses, and bank account details.
Pentel of America LtdRecords: 2076
Between 12/11/2008 and 1/20/2009, hacker(s) gained unauthorized access to the online database and accessed certain customer data, including name, billing address, email address, billing phone number, credit card number, expiration date and CV2 credit card security code.
Coleman for SenateRecords: 4716
A database of donors' information exposed from a publically accessible and unprotected directory.
University of FloridaRecords: 97200
An outside hacker gained access to a school computer system containing the personal information with social security numbers for more than 97,200 students, faculty and staff
Johns Hopkins HospitalRecords: N/A
An employee stole patients' information to create fake credit card accounts for goods and loans
University of AlabamaRecords: 37000
Hackers tapped 17 out of 400 databases containing personal information including names, addresses, birthdates, and security numbers
Pepsi Bottling GroupRecords: 1398
A portable data storage device, which contained personal information, including the names and Social Security numbers of employees in the US is missing.
Merrill LynchRecords: N/A
A third-party consulting services firm working on behalf of Merrill Lynch reported, one of their employees was burglarized. The burglars took various items, including a computer, which had the names and Social Security numbers of current and former Financial Advisors and some applicants for employment who are residents of the state of New Hampshire.
New Hampshire's Lakes Region General HospitalRecords: 1500
Missing package contains personal information of 1500 patients. UPS recently shipped the parcel from a Woburn, Mass. central processing agent to the hospital, but the package never arrived. Information contained in the package includes patient names, possible Social Security numbers, dates of service and diagnosis code numbers for different diagnosis or medical procedures.
Ohio State UniversityRecords: 18000
Ohio State University has notified 18,000 current and former students that their personel information was erroneously posted on an internet server. The information included student names, addresses, Social security numbers and coverage dates for those who enrolled in the health insurance from autumn 2005 through summer 2006.
An unauthorized breach of Katrina evacuees' private information. The information posted on two privately owned websites contained a spreadsheet with 16,857 lines of data that included applicant names, social security numbers, addresses, telephone numbers, email addresses and other disaster information regarding disaster applicants from Hurricane Katrina who had evacuated to Texas