Data Breach Lawsuits & Investigations
Every year, hundreds of millions of people are affected by data breaches that can leave them vulnerable to identity theft, credit damage, reputational harm and more.
Class action lawsuits remain one of the strongest ways to hold companies accountable for leaving consumers’, employees’ and patients’ private information unprotected. Indeed, some have resulted in multi-million-dollar settlements on behalf of those who – through no fault of their own – had their information stolen and, in the worst cases, even published on the dark web.
When a data breach lawsuit is successful, it can also require the company at fault to implement new security protocols to ensure the information it is entrusted with – medical, financial and otherwise – stays safe.
Got a data breach notice?
Scroll down to see the list of data breaches attorneys working with ClassAction.org are currently investigating. If you see one that looks familiar, click through to learn more about the breach and what you can do to potentially help get a class action lawsuit started.
And remember – don’t throw your notice away! It essentially serves as proof that you were affected by a specific security incident and can be vital if you choose to take legal action for the harm you suffered.
We update this page often with new data breach investigations, so make sure to bookmark it and come back regularly. You can also sign up for our free newsletter, which is sent on a weekly basis and includes our latest data breach alerts.
Featured Data Breaches
Young Consulting, LLC
August 2024Young Consulting is providing notice of a data breach on behalf of Blue Shield of California and potentially other entities whose files were accessed without authorization, exposing consumer information.
CBIZ Benefits & Insurance Services, Inc.
August 2024CBIZ has announced a recent data breach that may have impacted personal information of consumers associated with retiree health and welfare plans to which CBIZ provides business services.
The Facial Pain Center, PLLC
August 2024The Facial Pain Center, a Minnesota healthcare provider specializing in sleep apnea and TMD treatments, recently announced a data breach that reportedly impacted over 238,000 patients.
Palomar Health Medical Group
July 2024Palomar Health Medical Group in San Diego County is reporting a data breach that may have exposed personal, medical and financial information on behalf of itself and affiliates Graybill Medical Group and Pacific Accountable Care.
Kootenai Health
August 2024Kootenai Health, a healthcare network in Northern Idaho, is providing notice of a data breach affecting 464,088 patients, employees and employees' dependents.
Covenant Care California, LLC
August 2024Covenant Care California, which operates skilled nursing facilities and home health agencies, is notifying patients and others of a data breach that may have exposed their sensitive information.
Join the Newsletter
New cases and investigations, settlement deadlines, and news straight to your inbox.
Data Breach FAQs
I got a data breach notification. Does this definitely mean my info is being used fraudulently?
Not necessarily. When a company experiences a data breach, state law requires that it notify affected individuals. Receiving a letter does not automatically mean that your personal information is being used fraudulently – it just means your information was exposed in a data security incident and has the potential for being misused.
What should I do if I get a data breach letter?
If you get a data breach notice, make sure to read it closely. It should contain information on what happened, what information was involved, what the company is doing about it, steps you can take to protect yourself, and how you can get more information.
Some companies may offer free credit and/or identity theft monitoring for a period of time following a data breach, and the notice should include instructions on how to sign up. If you’re offered free monitoring, take advantage of it; signing up should not affect any legal claim you may have against the company.
Importantly, if you get a data breach letter, don’t throw it out! If you are interested in helping any of the investigations listed on this page, attorneys will want to see the letter you received.
Why do attorneys need to see my data breach notice?
Attorneys working with ClassAction.org are specifically looking to hear from people with a data breach notice because it essentially serves as proof that the individual was a victim of the incident and makes for a stronger legal claim.
So, I can sue over a data breach?
Yes. If your data was exposed in a security incident, you may be able to sue the company or companies responsible. Dozens of data breach class action lawsuits are filed each month, and this number only continues to increase. You can check out the proposed data breach class actions we’ve covered recently over on our newswire.
Can you give me an example of a data breach notification letter?
Absolutely. Here is an example of one sent to Forever 21 employees following a massive data breach that occurred in March 2023. This is the letter sent to consumers affected by the MAPFRE insurance data breach in late August 2023. In some cases, notices may be sent via email.
What if I never heard of the company that sent me a data breach notice?
It’s important to note that, in rare cases, you may not recognize the company sending the letter, but this does not mean it was sent in error.
For instance, a May 2023 data incident affecting a popular file transfer tool caused millions of individuals to have their information exposed. In this instance, many of the data breach letters were sent by a third-party vendor of the affected companies. For example, PBI Research Services sent this letter to customers of Corebridge Financial.
What if I threw my data breach notice out?
It’s important that, if you receive any data breach notice, you do not throw it out. If you’ve already done so, you may want to check the company’s website for their official notice of the breach – it should include the same information that was in your notice. You may also want to check the post for a dedicated number consumers can call with questions about the security incident. It’s worth a call to see if they can resend your notice, but this may not be possible.
What if I think I’m affected but haven’t received a notice?
Notices aren’t always sent immediately after a breach hits the news, so you may just have to be patient. Otherwise, you can check the company’s website to see if they’ve posted a notice about the breach – it may contain a number you can call with questions. They should, at the very least, be able to answer when notices are expected to go out and may also be able to confirm whether you were affected.
Be sure to bookmark our page and come back to it if you believe you’ve been affected by a data breach listed below but haven’t received a notice yet.
What kind of damages can I claim for a data breach?
In general, data breach victims can seek compensation for lost time responding to the incident, out-of-pocket costs related to the breach and loss of privacy.
Depending on the specifics of the data breach, out-of-pocket costs may include some of the following: money spent on preventative measures, such as identity theft and/or credit monitoring; service fees to replace stolen cards; money spent on credit reports and/or credit freezes; the costs associated with obtaining background checks or medical records; increased health insurance costs; and money lost via fraudulent transactions, fraudulent medical bills or stolen tax refunds.
Further damages may become available depending on the type of information exposed. For instance, if a person’s health data is leaked, they may be able to recover money for reputational damage if they are denied medical care or insurance coverage. Likewise, a person whose Social Security number is exposed may be able to recover money for damage to their credit.
How much can I claim in a data breach settlement?
How much you can claim in any data breach settlement will depend on a number of factors, including the specifics of the settlement, the amount of time you spent responding to the incident, the type and total amount of your out-of-pocket expenses, and how many claims are filed. There are never any guarantees as to whether a data breach lawsuit will be successful or how much they could provide to consumers; however, some of the largest data breach settlements obtained via class action lawsuits include a $350 million deal with T-Mobile and a $190 million deal with Capital One.
I’m looking for data breach class action settlements. Where can I find those?
We post class action settlements, including those involving data breaches, over on this page.
How do I know if I was part of a data breach?
If you were affected by a data breach, you should receive a notice via email or regular mail about the incident and what information may have been exposed. All 50 states require that businesses and governments alert consumers if their personal information is breached.
Anything else I should know?
If you’re interested in starting a class action lawsuit, you should know that those who elect to serve as a lead plaintiff are generally entitled to what’s known as a “service award” – that is, an additional payment for their help with the case. Typically, the lead plaintiff in a data breach case does not need to be involved as much as they would in other types of lawsuits. Depositions in these types of class actions are rare, and little documentation and information – aside from the initial data breach notice – is needed.
Plus, if you elect to serve as a lead plaintiff, you can feel good that you’re working to hold a company legally accountable for failing to protect the private information of potentially hundreds of thousands of individuals.
Recent Data Breaches
Received a notice but don’t see the breach listed here? Tell us about it using this form.
US Merchants Financial Group, Inc.
September 2024Packaging and containers manufacturer US Merchants is notifying individuals of a February 2024 data breach that may have exposed their personal information.
Riverside Resort & Casino
September 2024Riverside Resort & Casino in Laughlin, Nevada has reported a data breach affecting more than 55,000 individuals in which an unauthorized party potentially stole files containing personal information.
Turning Point of Central California, Inc.
August 2024Turning Point of Central California has begun notifying individuals who may have had their private information exposed in a data breach the nonprofit detected earlier this year.
Daniel J. Leeman, M.D.
September 2024Austin-based surgeon and ENT physician Daniel J. Leeman experienced a data breach that may have compromised patients' personal and medical information.
Slim CD, Inc.
September 2024Payment processor Slim CD has reported a data breach that may have exposed the credit card information of consumers who made purchases from merchants that used the company's services.
Avis Rent A Car System LLC
September 2024Avis Rent A Car System LLC is sending notice of an August 2024 data breach that may have exposed individuals’ personal and financial information.
Covenant Care California, LLC
August 2024Covenant Care California, which operates skilled nursing facilities and home health agencies, is notifying patients and others of a data breach that may have exposed their sensitive information.
Western Electrical Contractors Association, Inc.
August 2024Western Electrical Contractors Association, Inc. recently announced a data breach that occurred in January 2024 and may have impacted nearly 35,300 people.
Public Agency Retirement Services
August 2024A phishing attack has resulted in the exposure of personal information belonging to employees of public agencies that used PARS for retirement plan purposes.
CBIZ Benefits & Insurance Services, Inc.
August 2024CBIZ has announced a recent data breach that may have impacted personal information of consumers associated with retiree health and welfare plans to which CBIZ provides business services.
Excelsior Orthopaedics, LLP
August 2024Excelsior Orthopaedics announced a data breach that potentially exposed the sensitive information of employees and patients of the New York-based musculoskeletal center, as well as its affiliate Buffalo Surgery Center.
Help at Home
August 2024More than 26,000 individuals may have had personal and medical information exposed in a data breach affecting HAH Group Holding LLC, which does business as Help at Home.
Kingdom Trust
August 2024Kingdom Trust is notifying individuals that their personal information may have been exposed in a data breach.
The Facial Pain Center, PLLC
August 2024The Facial Pain Center, a Minnesota healthcare provider specializing in sleep apnea and TMD treatments, recently announced a data breach that reportedly impacted over 238,000 patients.
Keystone Pacific Property Management
August 2024In December 2023, Keystone Pacific Property Management first detected a data breach that exposed individuals’ personal information.
Young Consulting, LLC
August 2024Young Consulting is providing notice of a data breach on behalf of Blue Shield of California and potentially other entities whose files were accessed without authorization, exposing consumer information.
Dental Specialists of Minnesota, PLLC
August 2024Minnesota dental practice The Dental Specialists has reported a data breach that may have impacted over 38,000 patients.
Arden Claims Service
August 2024Arden Claims Service recently reported an October 2023 data breach that may have exposed consumers' personal information.
Mid-Columbia Center for Living
August 2024Mid-Columbia Center for Living, a behavioral health agency with locations in Oregon, has reported a data breach that may have exposed the private information of current and former clients.
Carespring Health Care Management
August 2024More than 76,000 individuals may have had their personal, financial and/or medical information exposed in a data security incident at Carespring Health Care Management, which provides senior care in Ohio and Kentucky.
VeriSource Services, Inc.
August 2024VeriSource Services, Inc. has reported a February 2024 data breach that may have compromised the names and Social Security numbers of its clients' employees and their dependents.
Pocahontas Medical Clinic, PA
August 2024More than 31,000 individuals may have had their private information compromised in a May 2024 data breach that targeted Pocahontas Medical Clinic.
Gastrointestinal Medicine Associates
August 2024Gastrointestinal Medicine Associates, a Rhode Island gastroenterology practice, is providing notice of a data breach that impacted nearly 32,000 individuals.
Consilium Staffing, Inc
August 2024Consilium Staffing, a company connecting contract healthcare providers with understaffed medical facilities, has reported a data breach discovered in October 2023 that potentially exposed sensitive personal information.
American Clinical Solutions, LLC
July 2024American Clinical Solutions has reported a hacking incident that may have exposed the personal health information of an estimated 300,000 individuals.
Enroll Confidently, Inc.
August 2024Enroll Confidently is notifying individuals of a February 2024 data breach that may have exposed their personal information.
Around the Clock Companies
August 2024Around the Clock Companies is notifying patients and clients of a months-long data breach that may have exposed Social Security numbers, medical information and more.
Fraser Child and Family Center
August 2024Fraser Child and Family Center, a Minnesota-based provider of mental health, rehabilitation, autism and disability services, identified a privacy breach in June 2024 that may have exposed the personal information of 67,000 individuals.
Alabama Cardiovascular Group
August 2024Alabama Cardiovascular Group has reported a data breach that may have exposed the private information of more than 280,000 patients, guarantors, employees and physicians.
Park Dental
August 2024Park Dental is notifying patients that their personal information may have been exposed in a January 2024 data breach.
Communication Federal Credit Union
August 2024Communication Federal Credit Union is notifying individuals of a data breach that may have compromised their personal and financial information.
East Valley Institute of Technology
August 2024On January 9, 2024, East Valley Institute of Technology (EVIT) experienced a significant data breach that exposed the private information of current and former students, parents and faculty.
Student Transportation of America
August 2024Student Transportation of America reported a data breach involving unauthorized access to employee email accounts and the potential exposure of individuals' personal information.
Baxter International, Inc.
August 2024Baxter International, Inc. has recently disclosed a data breach in which an unauthorized third party downloaded files containing personal information from its network.
Olympus Financial
August 2024Southern California financial services firm Olympus Financial announced a data breach that may have exposed consumers' Social Security numbers, banking information and more.
Educators Benefit Consultants, LLC (Aviben)
August 2024Educators Benefit Consultants, LLC, which does business as Aviben, has begun sending out notice of a data breach that reportedly impacted 39,640 individuals.
Kootenai Health
August 2024Kootenai Health, a healthcare network in Northern Idaho, is providing notice of a data breach affecting 464,088 patients, employees and employees' dependents.
Walser Automotive Group
July 2024Walser Automotive Group reported a May 2024 data breach that may have exposed individuals’ names, Social Security numbers and more.
Special Health Resources of Texas, Inc.
July 2024Special Health Resources of Texas, Inc. has reported a hacking incident that potentially compromised patients’ private health information.
LS Networks
July 2024Telecommunications company LS Networks is notifying individuals of a data breach that may have exposed Social Security numbers and other personal information.
Brownell Travel, Inc.
July 2024Brownell Travel, Inc. reported a November 2023 data breach that may have exposed the personal information of more than 12,800 individuals.
Peterson Holding Company
August 2024Peterson Holding Company and its subsidiaries are providing notice of a June 2023 data breach that may have exposed current and former employees' personal information.
Calibrated Healthcare, LLC
August 2024Calibrated Healthcare is providing notice of a data breach that may have impacted consumers' personal and health information.
Advantage Orthopedic & Sports Medicine is notifying individuals that their personal information may have been exposed during a data breach in January and February 2024.
Coastal Plains Community MHMR Center
July 2024Coastal Plains Community Center/Coastal Plains Integrated Health has reported that a November 2023 data breach exposed the private information of more than 45,000 individuals.
Northeast Rehabilitation Hospital Network has announced a data privacy incident potentially impacting the security of information related to certain current and former patients.
Findlay Automotive Group
July 2024Findlay Automotive has reported a data breach that may have exposed employees' Social Security numbers and other sensitive information.
Compex Legal Services Inc.
July 2024Compex Legal Services is investigating an April 2024 data breach that may have exposed individuals' Social Security numbers, medical information and more.
Arisa Health Incorporated
July 2024Arisa Health, an Arkansas mental health and substance abuse recovery services provider, suffered a data breach in March 2024 that exposed personal and medical information.
Freudenberg Medical, LLC
July 2024Freudenberg Medical reported a data breach that may have exposed the personal information of more than 4,000 individuals.
Life360
July 2024More than 400,000 users of Life360, a family social networking and location sharing app, have had their personal information leaked on the dark web following a data breach, reports say.
Palomar Health Medical Group
July 2024Palomar Health Medical Group in San Diego County is reporting a data breach that may have exposed personal, medical and financial information on behalf of itself and affiliates Graybill Medical Group and Pacific Accountable Care.
First Choice Dental
July 2024Wisconsin dental practice First Choice Dental has reported a data breach that may have exposed the personal, financial and medical information of over 228,000 people.
mSpy
July 2024Commercial spyware maker mSpy has reportedly suffered a data breach in which hackers stole millions of support tickets that dated back as far as 2014 and contained personal customer information.
New York School of Interior Design
July 2024More than 18,000 individuals are reportedly affected by a data breach at the New York School of Interior Design that was first discovered in November 2023.
La Jolla Group, Inc.
July 2024La Jolla Group is notifying individuals of a November 2023 data breach that may have exposed their names and Social Security numbers.
Morrison Child and Family Services
June 2024Morrison Child and Family Services has reported a data breach that may have exposed clients' personal and medical information to unauthorized access.
Kovack Financial
July 2024Kovack Financial has disclosed a significant security breach that potentially compromised the sensitive personal information of more than 43,000 individuals.
SkinCure Oncology
June 2024SkinCure Oncology reported a data breach that may have exposed the personal and medical information of over 13,000 individuals.
The Ambulatory Surgery Center of Westchester is notifying current and former patients and employees that their information may have been exposed to unauthorized access.
Neurobehavioral Medicine Consultants
June 2024More than 18,000 patients may have had their personal and medical information exposed in a data breach discovered in March 2024.
Radiology and Imaging Specialists
June 2024Radiology and Imaging Specialists has reported to the U.S. Department of Health and Human Services a data breach affecting 37,210 individuals.
Class Advisors
June 2024Class Advisors is notifying individuals about a data breach that may have exposed their personal information between February and March 2024.
CDK Global
June 2024CDK Global, which provides a software-as-a-service platform to thousands of car dealerships across the country, was hit by a massive cyberattack in June 2024, causing significant disruption within the auto industry.
South Texas Oncology and Hematology is notifying patients and employees of a data breach discovered in February 2024 that may have compromised their sensitive personal and medical information.
Santander Holdings U.S.A., Inc.
June 2024Santander is notifying employees of a data breach that may have compromised their Social Security numbers and bank account information.
Datamate Bookkeeping & Tax, Inc.
June 2024Datamate Bookkeeping & Tax, Inc., a California-based bookkeeping service, is notifying consumers about a 2023 data breach that may have exposed their private information.
The Association of Texas Professional Educators (ATPE) discovered a data breach in February 2024 that exposed the personal information of members, current and former employees, and dependents of employees.
Exela Technologies, Inc.
June 2024Business process automation company Exela Technologies has announced that consumers' names and Social Security numbers were recently exposed in an incident stemming from a June 2022 data breach.
Medjet and Medjet Assist
June 2024Medjet is notifying consumers of an October 2023 data breach in which their Social Security numbers and other personal information may have been accessed.
My Daily Choice, Inc.
June 2024My Daily Choice, Inc. has reported a February 2024 data breach that may have exposed Social Security numbers and financial information belonging to nearly 90,000 individuals.
Paycor, Inc.
June 2024Paycor, an HR software provider, announced that a data breach has compromised the private information of employees at PfP Industries.
Panorama Eyecare
June 2024Nearly 378,000 individuals may have had their information exposed in a data breach affecting Panorama Eyecare, a company that provides management services to its partner clinics.
EFS Advisors LLC
May 2024More than 30,000 individuals had their information exposed in a data breach affecting Minnesota-based wealth management firm EFS Advisors.
Omni Healthcare Financial Holdings
May 2024Omni Healthcare Financial Holdings has begun notifying individuals affected by a January 2024 data breach that may have compromised their personal and medical information.
More than 4,000 individuals may have had their personal information exposed in a data breach involving the email environment at Toshiba America Business Solutions, Inc.
The University of Chicago Medical Center is notifying affected individuals about a January 2024 data breach that may have exposed their personal and medical information.
Daniel E. Fitzgerald, CPA
May 2024Daniel E. Fitzgerald, CPA is notifying consumers and entities about a data breach that may have compromised their private information.
Hypertension-Nephrology Associates, a medical practice in Pennsylvania, recently announced that it was the target of an extortion attack that may have exposed the private data of more than 39,000 patients.
Chambers Construction Co.
April 2024Chambers Construction Co. has reported a 2024 data breach that exposed the names and Social Security numbers of 489 employees.
Thayer Academy
May 2024Thayer Academy, a private school in Braintree, Massachusetts, reported a data breach that exposed the private information of more than 15,000 individuals.
Inland Physicians Billing Services
April 2024Inland Physicians Billing Services has reported to the Department of Health and Human Services a data breach that affected more than 77,000 individuals.
Sterling Plumbing Inc.
May 2024Sterling Plumbing Inc., which provides plumbing installation services in California, recently reported a March 2024 data breach that may have exposed individuals' personal information.
American International College
May 2024Nearly 12,000 individuals had their sensitive information exposed in a weeks-long data breach involving American International College's network.
The Dufresne Spencer Group, LLC
May 2024The Dufresne Spencer Group, which operates several Ashley HomeStore locations, recently reported that more than 65,000 individuals were affected by a data breach it experienced last year.
Ascension
May 2024Ascension, which operates hospitals and senior care facilities across 19 states, has reported a May 2024 cyber security incident determined to be a ransomware attack.
Lamont Hanley & Associates, Inc.
May 2024Lamont Hanley & Associates, which provides accounts receivable services, has reported a data breach that may have compromised the personal, medical and financial information of over 11,000 individuals.
Running Warehouse, LLC
December 2021In December 2021, Sports Warehouse sent notice of a data breach that exposed the private data of more than 1.8 million customers. If you received a notice that your information was compromised, you may be able to take legal action.
Associated Wholesale Grocers
April 2024An October 2023 cyber security incident at Associated Wholesale Grocers, a cooperative food wholesaler to independent grocery stores, has affected more than 26,000 individuals.
Virginia Union University
May 2024Virginia Union University reported a data breach that may have exposed individuals' sensitive personal information.
Bluebonnet Trails Community Services
April 2024Bluebonnet Trails, which offers mental health care and other services to Texas residents, has reported a data breach that affects more than 76,000 individuals and involved unauthorized access to employee email accounts.
Somerset Dental Las Vegas
April 2024Somerset Dental Las Vegas has reported a data breach that exposed the personal and health information of more than 11,000 patients.
Bay Oral Surgery & Implant Center
April 2024Bay Oral Surgery & Implant Center in Wisconsin has reported a data breach that may have exposed thousands of patients' personal, medical and financial information.
Bousquet Holstein PLLC
April 2024Bousquet Holstein is notifying individuals that their personal information may have been exposed when an unauthorized party accessed its computer systems in September 2023.
Optometric Physicians of Middle Tennessee
April 2024Optometric Physicians of Middle Tennessee has reported that 29,000 patients were affected by a data breach discovered in March 2024.
Santa Rosa Behavioral Healthcare Hospital
April 2024Santa Rosa Behavioral Healthcare Hospital recently reported a January 2024 data breach that exposed patients' personal and medical information.
Kaiser Permanente
April 2024On April 12, 2024, Kaiser Foundation Health Plan, Inc., which provides health insurance plans to employers, reported to the U.S. Department of Health and Human Services (HHS) a data breach affecting 13,400,000 individuals.
Biggs Cardosa Associates, Inc.
April 2024Structural engineering firm Biggs Cardosa Associates recently reported a data breach that may have exposed individuals' Social Security numbers and other personal information.
AllCare Pharmacy
April 2024Customers of Arkansas-based AllCare Pharmacy are being notified of a data privacy incident that exposed sensitive personal and prescription information.
Island Ambulatory Surgery Center, LLC
April 2024Island Ambulatory Surgery Center in Brooklyn, New York reported a data breach that may have compromised the personal and medical information of people who sought its services.
DES Architects + Engineers, Inc.
April 2024DES Architects + Engineers revealed that 1,144 individuals may have had their personal information compromised in a data breach that took place last year.
Hapy Bear Surgery Center
April 2024Hapy Bear Surgery Center, a California dental clinic, has begun sending notice of a data breach that may have exposed consumers’ private information.
Tandym Group LLC
April 2024Staffing agency Tandym Group recently disclosed a data breach that involved unauthorized access to an employee’s email account and exposed consumers' personal data.
Woodruff-Sawyer & Co.
March 2024Insurance brokerage and consulting firm Woodruff Sawyer is sending notice of a data breach that may have exposed consumer information provided to the company by its clients.
Campbell Killin Brittan & Ray, LLC
March 2024Campbell Killin Brittan & Ray, a law firm in Denver, Colorado, reported that a 2023 data breach may have exposed the names and Social Security numbers of more than 4,000 individuals.
GreenWaste Recovery, LLC
April 2024GreenWaste Recovery, LLC, a California-based recycling and waste management company, began notifying consumers of a November 2023 data breach that may have involved their personal data.
EBlock Corp.
April 2024Nearly 2,000 people may have been impacted by a data breach affecting dealer-to-dealer digital auction platform EBlock.
Clackamas Community College
April 2024Clackamas Community College reported that nearly 8,800 people had their personal information exposed in a January 2024 cybersecurity attack.
Tri-City Healthcare District
April 2024Tri-City Healthcare District, which operates Tri-City Medical Center in Oceanside, California, is notifying individuals that their personal information may have been involved in a November 2023 data breach.
Southwest Boston Senior Services
March 2024Southwest Boston Senior Services, which does business as Ethos, is notifying individuals of a November 2023 data breach that may have exposed their personal and medical information.
AT&T Inc.
March 2024AT&T has acknowledged a massive data breach that exposed sensitive information belonging to 73 million current and former customers.
Delta Pipeline Inc.
March 2024Delta Pipeline is notifying individuals of a data breach that may have exposed their personal information, including Social Security numbers and medical information.
Affinity Health Services
March 2024Affinity Health Services reported that patients and employees of senior living communities may have had their sensitive information exposed in an April 2023 data breach.
Jordano's Inc
March 2024Food service company Jordano’s experienced a data breach in February 2024 and is now notifying those affected that their personal information may have been compromised.
V12 Software, Inc.
March 2024V12 Software, which offers an online-based platform for car dealerships, has reported a data breach that affects more than 286,000 individuals.
Philips Respironics International Colorado, Inc.
January 2024Philips Respironics has reported that more than 457,000 patients had their personal and medical information exposed in the data breach involving the MOVEit transfer tool.
R1 RCM Inc.
March 2024R1 RCM, a business associate of St. Rose Dominican Hospital de Lima in Henderson, Nevada, has reported that over 16,000 individuals' personal and medical information may have been exposed in a data breach.
Citizens Bank of West Virginia
March 2024Citizens Bank reported a November 2023 data breach that may have exposed the personal information of more than 35,000 individuals.
Akumin
December 2023Confidential patient information was exposed in a ransomware attack on Akumin, a provider of outpatient radiology and oncology services.
Eland Energy
March 2024Eland Energy has begun notifying individuals that their private data may have been compromised in a data breach the oil and natural gas company experienced in January 2024.
Stanford University
March 2024Stanford University is sending notice letters to thousands of individuals who may have had their data exposed in a months-long data breach that took place last year.
Saint Louis University
March 2024Saint Louis University has reported a months-long data breach that may have exposed individuals' personal, financial and medical information.
Nations Direct Mortgage, LLC
March 2024Nations Direct Mortgage is notifying individuals of a data breach that may have exposed their personal information in December 2023.
Change Healthcare
February 2024The massive Change Healthcare cyberattack has reportedly crippled the U.S. healthcare system, and individuals whose information was exposed may be able to take legal action.
Elemetal
March 2024Elemetal, a precious metals refiner, is notifying consumers that their private information may have been exposed during a data breach last year.
Institute of Food Technologists
February 2024Institute of Food Technologists has reported a data breach that occurred in April 2023 and may have compromised individuals' names, Social Security numbers, financial details, medical information and more.
Pacific Cataract and Laser Institute is notifying patients of a November 2023 data breach that may have exposed their personal, medical, health insurance, and financial information.
NewGen Administrative Services
February 2024A data breach involving NewGen Administrative Services, LLC may have exposed the personal, financial and/or health information of individuals associated with several healthcare providers.
Rio Hondo Community College District
February 2024Rio Hondo Community College District recently announced that current and former students' personal information may have been compromised in an October 2023 data breach.
Crossroads Equipment Lease & Finance
February 2024Around February 23, 2024, Crossroads Equipment Lease & Finance began sending out notice of a data breach that reportedly impacted over 24,000 individuals.
Davlyn Investments Property Management
February 2024Around February 14, 2024, Davlyn Investments began sending out notice of a data breach that exposed individuals’ names and Social Security numbers.
Superior Communications
February 2024Superior Communications, a provider of mobile accessories and services to major wireless carriers, retailers and more, recently reported a data breach that exposed personal information.
Prime Healthcare Employee Health Plan
February 2024More than 100,000 people may have had their personal and medical information exposed in a data breach affecting Prime Healthcare benefit plan members.
CarePro Health Services
January 2024Patients who used CarePro Health Services, also known as CR Pharmacy Services, may have had their personal and medical information exposed in a November 2023 data breach.
SinglePoint Outsourcing
February 2024Singlepoint, which provides HR outsourcing solutions, is notifying individuals of a data breach in which an unauthorized individual acquired files containing personal data in November 2023.
Azura Vascular Care
January 2024Got a notice about the Azura Vascular Care data breach? You may be able to start a class action and recover money for having your info exposed. Learn more.
J.D. Gilmour & Co.
January 2024J.D. Gilmour has reported a June 2023 security breach that exposed the personal information of individuals in relation to their insurance coverage.
Tristar Insurance Group
January 2024Third-party insurance claims administrator TRISTAR is notifying individuals of a data breach that took place in November 2022 and exposed personal information.
Emmanuel College
January 2024In January 2024, Emmanuel College began notifying individuals who may have had their private information exposed in a data breach it experienced last year.
Raptor Technologies
January 2024School safety software provider Raptor Technologies acknowledged a data breach that reportedly exposed over four million records, including sensitive data belonging to students, parents and school staff.
HMG Healthcare, LLC
January 2024Nursing home operator HMG Healthcare has reported that 80,000 patients and employees may have had their information exposed in a data breach in August 2023.
First Financial Security, Inc.
January 2024First Financial Security has reported that it fell victim to a ransomware attack that exposed individuals' full names, Social Security numbers and other "personal information."
InHealth Technologies
January 2024More than 12,000 InHealth customers may have had their personal and protected health information exposed in a 2023 data breach.
Plaza Radiology, LLC
December 2023Plaza Radiology, also known as Chattanooga Imaging, reported a data breach that exposed over 569,000 individuals' personal information in October 2023.
Senior Scripts
January 2024Senior Scripts, which provides pharmaceutical and other health- and medical-related services, has reported to the U.S. Department of Health and Human Services a data breach affecting 10,566 individuals.
TTM Technologies
December 2023Printed circuit board manufacturer and technology solutions provider TTM Technologies experienced a data breach in late September that compromised approximately 7,333 individuals' personal information.
Estes Express Lines
December 2023Trucking company Estes Express Lines reported a ransomware attack that exposed more than 21,000 individuals' personal information in October 2023.
TaxPlus
December 2023TaxPlus, which provides tax preparation and accounting services in Los Angeles and San Diego, has announced that hackers gained access to its tax preparation software and made copies of client data over the course of several days in late August 2023.
AMCP Payments Intermediate Company LLC
December 2023AMCP Payments Intermediate Company, which does business as Talus Pay, reported that an unauthorized actor gained access to personal information stored in certain employee email accounts in May 2023.
Coos Health & Wellness
December 2023Coos Health & Wellness announced a data breach that may have exposed personal information belonging to individuals who received services from public or behavioral health programs it sponsors.
Warrior Met Coal, Inc.
December 2023Alabama coal producer Warrior Met Coal reported that nearly 20,000 individuals' personal information may have been exposed during a July 2023 cyberattack.
CVC Holding Corp
December 2023CVC Holding Corp recently experienced a data breach during which a ransomware group may have gained access to individuals' personal information.
Neuromusculoskeletal Center of the Cascades and Cascade Surgicenter (The Center) announced that patients’ personal and health information was compromised during a data breach experienced between October 2 and October 3, 2023.
Foursquare Healthcare, Ltd.
November 2023Foursquare Healthcare, a Texas-based senior care provider, reported that patient and employee information was exposed in a September 2023 data breach.
4 Over LLC
December 2023Wholesale trade printer 4 Over has announced a data breach that may have exposed over 8,000 consumers' personal information in November 2022.