Completed Data Breach Investigations

Below you will find a list of data breach investigations that are no longer active on ClassAction.org. This does not mean, however, that those affected by the breaches are without recourse. It just means that attorneys working with ClassAction.org have completed their investigations into the data breaches listed below.

There are two main reasons why a case may get added to this page. These are:

A lawsuit has been filed (or is being prepared), and attorneys no longer need to speak with those who received notice of the breach.
Attorneys working with ClassAction.org have decided not to move forward with filing a lawsuit over the breach.
There may be other lawyers, however, who are investigating the incident and looking to take legal action. If you received a notice in a now-archived matter, you may want to contact a local attorney to learn more about your options. Keep in mind that there are time limits for filing all lawsuits.
ClassAction.org Newsletter

Stay Current

Sign Up For
Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

We respect your privacy and promise not to share your information with any third parties. You may opt-out at any time.
Case Updates:
Follow the latest developments in ongoing class action lawsuits.
Consumer Information:
Know your rights as a consumer, and when they're being broken.
News:
Read about the newest class action lawsuits and learn how you can take part.
Opinions:
Legal and business professionals offer you their take on the news that matters.
Sort By:

Looking for the most recent data breach lawsuits & investigations? You can find them here.

Datamaxx experienced a data breach in December 2023 that allowed for unauthorized access to files containing personal information.

A data breach involving the website and purchasing page for Walsworth Publishing Company may have exposed customers' payment data.

Home health services provider Visiting Physicians Services has reported a June 2024 data breach that affected over 20,600 individuals.

Bojangles' Restaurants, Inc. is notifying individuals of a February-March 2024 data breach that may have exposed consumers' personal, financial and medical information.

A data breach at the Illinois gastroenterology practice may have exposed the personal and health information of more than 147,000 individuals.

TEAM Software has reported a July 2024 data breach that may have compromised the sensitive information of over 99,000 people.

Set Forth, Inc. and business partner Centrex, Inc. are notifying individuals of a data breach that may have exposed names, Social Security numbers and more.

Thompson Coburn LLP is sending notice of a May 2024 data breach that impacted the private information of more than 305,000 patients of Presbyterian Healthcare Services.

OrthopedicsNY is notifying patients about a December 2023 ransomware attack that may have exposed their personal, health and financial information.

Personal injury firm Montlick & Associates is notifying individuals whose personal information may have been exposed in an August 2024 data breach that impacted 138,515 people.

Belle Tire Data Breach

November 2024

Belle Tire, a retailer in the wheel and automotive service industry, has announced a data breach that may have compromised the personal information of nearly 29,330 individuals.

SelectBlinds is notifying individuals of a data breach involving malware that gathered customers' online checkout information from January to September 2024.

Saint Xavier University, a private Catholic university in Chicago, suffered a data breach in 2023 that exposed Social Security numbers, medical information and other personal details.

Collection agency RRCA Accounts Management is notifying individuals of a June 2024 ransomware incident during which personal and health information were accessed.

The New York City-based medical equipment provider has reported a June/July 2023 data breach that may have exposed sensitive personal and financial information.

Landmark Admin, a third-party administrator for life insurance carriers, is notifying policy holders and beneficiaries of a data breach that may have exposed their private information.

BronxWorks is notifying individuals of a 2023 data breach that involved unauthorized access to employee email accounts, exposing personal, financial and health information.

Rocky Mountain Gastroenterology has reportedly experienced a data breach carried out by three cybercriminal groups that may have exposed patients' personal and medical information.

Hot Topic Data Breach

October 2024

Reports have surfaced that a hacker may have stolen personal and card data for 350 million customers of Hot Topic and two affiliated brands, Torrid and BoxLunch.

Autobell Car Wash has announced an April 2024 data breach that has reportedly impacted the private information of more than 52,000 individuals.

More than 36,000 people are reportedly affected by a data breach at Abbott Laboratories Employees Credit Union that exposed personal and financial information.

In June 2024, General Physician, P.C. detected a data breach that compromised confidential patient information.

Summit Pathology, which provides pathology services to hospitals and physician offices in Colorado, Wyoming and Nebraska has announced a data breach impacting patient information.

Leaders Staffing is sending out notice of a January 2024 data breach that reportedly impacted 51,929 individuals.

A data breach affecting revenue cycle and management company Gryphon Healthcare may have exposed the private and protected health information of more than 390,000 patients.

Southwest Colorado Mental Health Center, which does business as Axis Health System, has uncovered a cybersecurity breach that involved unauthorized access to its computer network and took place in mid-2024.

Fidelity Investments has reported that over 77,000 individuals may have had their information compromised in an August 2024 data breach.

California healthcare provider Omni Family Health is notifying patients and employees that their personal information may have been posted on the dark web.

Accounting firm Dohman, Akerlund & Eddy is sending notice of a data breach that may have exposed personal information for over 82,000 people.

TransUnion Risk and Alternative Data Solutions, Inc. is notifying individuals of a data breach that may have compromised their private information.

Sensitive personal, medical and financial information was reportedly exposed in a May 2024 data breach impacting Community Clinic of Maui, which does business as Mālama I Ke Ola Health Center.

MC2 Data Data Breach

September 2024

Reports say that nearly one-third of the United States’ population has had their personal information leaked in a massive breach that targeted background check firm MC2 Data.

siParadigm is sending notice of a data breach that may have compromised Social Security numbers, medical information and more.

Both employees and customers reportedly had their personal information exposed in an early 2024 data breach at David's Bridal.

KemperSports, a golf course and hospitality management company, is notifying individuals who may have had their private information compromised in an April 2024 data breach.

A Medicare contractor is announcing a data breach that may have exposed the private information of nearly 947,000 Medicare beneficiaries and potentially others who received health care services.

Katz Nannis + Solomon, PC is notifying consumers that their private information may have been exposed in a November 2023 data breach.

Avis Rent A Car System LLC is sending notice of an August 2024 data breach that may have exposed individuals’ personal and financial information.

Western Electrical Contractors Association, Inc. recently announced a data breach that occurred in January 2024 and may have impacted nearly 35,300 people.

Excelsior Orthopaedics announced a data breach that potentially exposed the sensitive information of employees and patients of the New York-based musculoskeletal center, as well as its affiliate Buffalo Surgery Center.

More than 26,000 individuals may have had personal and medical information exposed in a data breach affecting HAH Group Holding LLC, which does business as Help at Home.

In December 2023, Keystone Pacific Property Management first detected a data breach that exposed individuals’ personal information.

Young Consulting is providing notice of a data breach on behalf of Blue Shield of California and potentially other entities whose files were accessed without authorization, exposing consumer information.

Arden Claims Service recently reported an October 2023 data breach that may have exposed consumers' personal information.

VeriSource Services, Inc. has reported a February 2024 data breach that may have compromised the names and Social Security numbers of its clients' employees and their dependents.

More than 31,000 individuals may have had their private information compromised in a May 2024 data breach that targeted Pocahontas Medical Clinic.

Gastrointestinal Medicine Associates, a Rhode Island gastroenterology practice, is providing notice of a data breach that impacted nearly 32,000 individuals.

Both employees and customers of Patelco Credit Union are reportedly affected by a ransomware attack that occurred in June 2024 and exposed Social Security numbers and other personal information.

American Clinical Solutions has reported a hacking incident that may have exposed the personal health information of an estimated 300,000 individuals.

Around the Clock Companies is notifying patients and clients of a months-long data breach that may have exposed Social Security numbers, medical information and more.

Fraser Child and Family Center, a Minnesota-based provider of mental health, rehabilitation, autism and disability services, identified a privacy breach in June 2024 that may have exposed the personal information of 67,000 individuals.

Alabama Cardiovascular Group has reported a data breach that may have exposed the private information of more than 280,000 patients, guarantors, employees and physicians.

Specialty Networks, Inc. experienced a data breach in December 2023 that potentially compromised the personal and protected health information of certain current and former patients.

Communication Federal Credit Union is notifying individuals of a data breach that may have compromised their personal and financial information.

MD Now Data Breach

August 2024

Patients and employees of MD Now, which provides urgent care services in Florida, may have had their personal information exposed in a May 2024 data breach.

On January 9, 2024, East Valley Institute of Technology (EVIT) experienced a significant data breach that exposed the private information of current and former students, parents and faculty.

Baxter International, Inc. has recently disclosed a data breach in which an unauthorized third party downloaded files containing personal information from its network.

Evening Post Publishing is sending notice of a March 2024 data breach that may have exposed the personal and financial information of over 15,000 individuals.

CSC ServiceWorks announced that more than 35,000 people may have had their private information compromised in a months-long data breach.

Educators Benefit Consultants, LLC, which does business as Aviben, has begun sending out notice of a data breach that reportedly impacted 39,640 individuals.

Monte Nido, a nationwide provider of eating disorder treatment, announced a data breach that may have impacted a wide variety of sensitive personal information.

Kootenai Health, a healthcare network in Northern Idaho, is providing notice of a data breach affecting 464,088 patients, employees and employees' dependents.

Gramercy Surgery Center is notifying individuals of a June 2024 data breach that may have compromised information as sensitive as Social Security numbers and medical information.

United of Omaha Life Insurance Company suffered a data breach in April 2024 that exposed individuals’ personal information in connection with the company’s employer group insurance products.

HealthEquity has announced that 4.3 million individuals may have been affected by a data breach that exposed sign-up information for the accounts and health benefits it administers.

A ransomware gang claims to have stolen information on millions of Acadian Ambulance service patients in a cyberattack that reportedly began in June 2024.

Arisa Health, an Arkansas mental health and substance abuse recovery services provider, suffered a data breach in March 2024 that exposed personal and medical information.

Current and former employees, as well as some customers, may have had their private information exposed in a 2024 data breach at MarineMax, Inc.

More than 2 million individuals may have had their personal information exposed after an unknown third party impersonated a Rite Aid employee and gained access to company systems.

Minnesota gastroenterology practice MNGI Digestive Health has reported a data breach impacting nearly 766,000 current and former patients and employees.

Prudential has reported a February 2024 data breach impacting more than 2.5 million individuals.

Southcoast Health and Privia Medical Group of Georgia are notifying individuals who may have had their private information exposed in a data breach that targeted the former’s network in June 2023.

The Medibase Group, a vendor for healthcare providers, is notifying individuals of a January 2024 cybersecurity incident that may have exposed their personal information.

Thousands of current and former Florida Community Health Centers patients are being notified that their health information may have been exposed in a ransomware attack that took place in June 2023.

Arcis Golf, a golf club operator, has reported a data breach that may have exposed the personal information of thousands of individuals.

Evolve Bank & Trust suffered a data breach when ransomware attackers leaked information of personal banking customers, employees and more.

Current and former patients of Coastal Orthopedics & Sports Medicine of Southwest Florida may have had their personal and medical information exposed in a data breach first reported in August 2023.

CDK Global, which provides a software-as-a-service platform to thousands of car dealerships across the country, was hit by a massive cyberattack in June 2024, causing significant disruption within the auto industry.

South Texas Oncology and Hematology is notifying patients and employees of a data breach discovered in February 2024 that may have compromised their sensitive personal and medical information.

Advance Auto Parts has reportedly been the victim of a massive cyberattack that may have compromised employee and applicant data stored by Snowflake, a third-party cloud storage provider.

Scout Energy Management is notifying individuals about a data breach that may have exposed their personal information at certain times between January and April 2024.

Panera is notifying employees of a March 2024 data breach that may have exposed their names and Social Security numbers.

Highland Health Systems, a behavioral health clinic in Alabama, reported a July 2023 data breach that may have compromised consumers' personal and medical information.

Consulting Radiologists, Ltd. has begun sending notice of a data breach that may have exposed patients’ personal and health information.

Truist Bank employees and some customers may be affected by an October 2023 data breach recently confirmed by the financial institution.

Doxim, Inc. announced that an unauthorized party accessed the part of its network that supports credit union services, exposing information supplied to the third-party service provider to prepare account statements and income tax forms.

A criminal hacking group claims to have stolen personal information belonging to 560 million Ticketmaster customers, including partial payment card details and contact information.

More than 70,000 Adventist Health Tulare patients are affected by a data breach involving a third-party payment service provider known as Signature Performance.

Mr. Cooper Data Breach

December 2023

Mr. Cooper has reported that nearly 14.7 million homeowners may have had their personal information exposed in a 2023 data breach.

First American Financial Corporation has reported that an unauthorized actor gained access to its IT systems in a data breach discovered in December 2023.

More than 750,000 individuals had their personal information exposed in an April 2024 data breach at Frontier Communications.

Reports have surfaced that hackers allege to have stolen billions of records from Florida-based background check firm National Public Data.

Nearly 378,000 individuals may have had their information exposed in a data breach affecting Panorama Eyecare, a company that provides management services to its partner clinics.

DG3, which provides printing, mailing and communication services for its various business partners, reported a data breach that may have compromised the personal information of more than 13,700 individuals.

More than 27,500 individuals are affected by a data breach at Form I-9 Compliance, a company that helps customers complete government-required employment documents.

Employees of TRC Talent Solutions had their personal information put at risk during a data breach of company systems in March and April 2024.

A&A Services, which does business as Sav-Rx, announced a data breach that may have impacted over 2.8 million current and former employees and health plan participants.

Association of California School Administrators reported a data breach that may have exposed various types of personal information belonging to over 54,000 individuals.

Trionfo Solutions reported a December 2023 data breach that may have exposed the personal information of 65,787 individuals.

Superior, which operates medical transportation services in five states in the Midwest, recently reported a data breach that exposed personal and medical information of over 858,000 patients.

Brockton Area Multi Services, Inc. (BAMSI) discovered a data breach in April 2023 that has reportedly affected 23,705 individuals.

Texas Panhandle Centers, which provides behavioral and developmental health services, has reported that an October 2023 data breach may have exposed personal and medical information.

Current and former employees of Nissan North America may have had their information exposed in a targeted cyberattack discovered in late 2023.

Patients and employees of Affiliated Dermatologists and Dermatologic Surgeons in New Jersey may have had their information exposed in a March 2024 data breach affecting 380,000 individuals.

Paychex discovered a data breach in April 2024 that occurred during an exchange of unclaimed property information with the State of California.

Medical device manufacturer LivaNova recently announced a data breach that reportedly affected 180,000 patients.

The Ohio Lottery has reported that a December 2023 data breach exposed the personal information of more than half a million individuals.

Community First Credit Union recently reported a September 2023 data breach that may have exposed consumers' personal information.

Numotion, a company that manufactures wheelchairs, has announced a data breach that appears to affect both customers and employees.

Panda Restaurant Group has reported that former and current associates' personal information may have been exposed in a March 2024 data breach.

OrthoConnecticut has reported a November 2023 data breach that exposed the personal and health information of more than 118,000 patients.

Falcon Healthcare, Inc., which does business as Interim Healthcare of Lubbock Texas, is notifying patients about a data breach that may have exposed their personal and medical information.

OE Federal Credit Union recently announced a data breach that may have exposed individuals' personal, financial and medical information for over two months.

Continuum Health Alliance recently reported an October 2023 data breach that may have exposed consumers' personal and medical information.

More than 25,500 individuals may have had their private information compromised in a May 2023 data breach that targeted The Philadelphia Inquirer.

Octapharma Plasma has reportedly been the victim of a ransomware attack that may have compromised consumers' sensitive data, including personal and medical information belonging to donors and employees.

J.P. Morgan recently disclosed a data breach that may have compromised Social Security numbers and financial information belonging to over 450,000 people.

Nearly 2 million people are reportedly impacted by a data breach at third-party debt collection agency Financial Business and Consumer Solutions, Inc. (FBCS).

Advarra, a company that provides research compliance services to hospital systems and clinical research organizations, is notifying patients of Moffitt Cancer Center and Research Institute that their information may have been exposed in a data breach it experienced.

WebTPA Employer Services, which provides third-party administrative services to insurance companies, employers and health systems, is notifying individuals of a data breach in which personal information contained on its network was potentially exposed.

Current and former patients of Valley Mountain Regional Center in California may have had their personal and medical data exposed in a July 2023 data breach.

A June 2023 data breach recently announced by Green Diamond Resource Company may have compromised consumers' personal, financial and medical information.

Blackstone Valley Community Health Care, which provides medical services in Rhode Island, is notifying individuals of a data breach that affected more than 34,000.

Texas-based contractor Baker Drywall Partnership reported a data breach that may have exposed consumers' personal and financial information.

SysInformation Healthcare Services, a revenue cycle management and billing services company, recently reported a data breach that may have exposed consumers' personal and medical information.

Kisco Senior Living experienced a data breach in June 2023 and is now notifying individuals whose personal information may have been compromised.

More than 514,000 individuals were reportedly affected by a data breach that targeted HUB International between December 2022 and January 2023.

Visionary Integration Professionals, which provides IT consulting services, reported a data breach that may have exposed consumers’ Social Security numbers.

The Roman Catholic Diocese of Phoenix has reported a data breach that affected participants in Diocese-sponsored employee benefits programs.

Cherry Health, a healthcare provider in Grand Rapids, Michigan, is notifying patients and former employees of a data breach that may have impacted their personal and health information.

Hapy Bear Surgery Center, a California dental clinic, has begun sending notice of a data breach that may have exposed consumers’ private information.

Logistics company Alan Ritchey recently reported a February 2024 data breach that may have exposed consumers' Social Security numbers and other personal information.

Greylock McKinnon Associates recently reported a data breach affecting over 300,000 individuals whose information was provided to the U.S. Department of Justice.

Both employees and patients of Family Health Center in Kalamazoo, Michigan are affected by an early 2024 data breach in which files were accessed by an unauthorized party.

In March 2024, Sacramento Rehabilitation Hospital began sending out notice of a data breach that may have exposed patients’ personal and health information.

Bakersfield Rehabilitation Hospital has begun notifying individuals affected by an early 2024 data breach that may have compromised their personal and medical information.

Certain patients of the Rehabilitation Hospital of Southern California may have had their personal and medical information exposed in an early 2024 data breach.

Group Health Cooperative of South Central Wisconsin has reported a data breach that may have impacted the protected health information of more than 533,000 individuals.

• Featured

More than 160,000 individuals are affected by a data breach at Pacific Guardian Life that potentially exposed personal, medical and financial information.

Pennsylvania's York County School of Technology revealed that 30,914 individuals may have had their personal and health information compromised in a data breach that took place last year.

More than 300,000 individuals, both patients and staff, are affected by a data breach at Otolaryngology Associates.

On Q Financial recently reported that over 211,000 clients may have had their names and Social Security numbers exposed in a data breach.

City of Hope, a cancer treatment and research organization, has announced a data breach affecting 827,149 individuals that exposed personal, medical and financial information.

SouthState Bank is notifying consumers that their personal information may have been exposed during a cybersecurity incident discovered in early February 2024.

Debt collection agency Designed Receivable Solutions reported a data breach in March that affected over 129,000 individuals.

AT&T has acknowledged a massive data breach that exposed sensitive information belonging to 73 million current and former customers.

Emergency Medical Services Authority has reported to the Department of Health and Human Services that more than 600,000 patients may have had their personal information exposed in a data breach.

Orsini Pharmaceutical Services is notifying individuals that their personal and medical information may have been exposed in a January 2024 data breach.

Pembina County Memorial Hospital announced that patients’ personal and health information was compromised during a data breach it experienced in March 2023.

Medical billing provider M&D recently began notifying its clients' patients of a data breach that may have exposed their sensitive information in June and July 2023.

More than 44,000 individuals may have had their personal information compromised in a 2022 ransomware attack on Monmouth College.

GardaWorld Cash is notifying individuals of a data security incident that may have exposed their personal information in November 2023.

Select Education Group (which includes Institute of Technology, National Holistic Institute, Bauman College, Fremont University and Arch USA) is sending notice of a data breach affecting over 67,000 individuals.

V12 Software, which offers an online-based platform for car dealerships, has reported a data breach that affects more than 286,000 individuals.

Weirton Medical Center is notifying current and former patients of a data breach that may have compromised their personal information earlier this year.

Valley Oaks Health is providing notice of a data breach that reportedly exposed more than 50,000 individuals' personal information in June 2023.

Aveanna Healthcare, a provider of home and hospice care, is notifying patients and employees of a data breach that took place last year and exposed certain personal and medical information.

Flower delivery service Teleflora is sending letters to individuals affected by a November 2023 data breach that exposed the private information of more than 12,000.

Precision Tune Auto Care has reported a data breach that impacted more than 15,000 people and exposed sensitive personal information, including Social Security numbers.

More than 150,000 individuals have been impacted by a data breach at financial and global information services company Gerson Lehrman Group.

CCM Health reported an April 2023 data breach that may have exposed the personal information of more than 29,000 individuals.

Massive litigation is proceeding over the 2023 MOVEit data breach, an incident that has reportedly affected more than 94 million people and has been called the “biggest data theft” of the year.

Century Federal Credit Union is notifying individuals that their personal information may have been exposed when an unauthorized party accessed an employee email account in August and September 2023.

Eastern Radiologists recently reported that over 886,000 patients' personal and medical information may have been compromised in a November 2023 data breach.

Northeast Orthopedics and Sports Medicine, PLLC is notifying patients of a data breach that occurred in November 2023 and may have exposed sensitive personal and medical information.

Elemetal, a precious metals refiner, is notifying consumers that their private information may have been exposed during a data breach last year.

Bradford-Scott is providing notice on behalf of its customers of a May 2023 data breach that may have exposed consumers' sensitive personal information.

Yakima Valley Radiology, PC confirmed a data security incident that compromised the personal and health information of 235,249 individuals.

Over 52,000 individuals may have had their personal information exposed during a data breach that targeted Greensboro College in August 2023.

More than 515,000 people are reportedly affected by a data breach impacting Aspen Dental and WellNow Urgent Care.

Alliance Solutions Group, which does business as TalentLaunch, reported that workers' personal information may have been exposed in a May 2023 data breach.

Drug wholesaler Cencora and its affiliate Lash Group are sending notices of a February 2024 data breach that may have exposed individuals’ personal and health information.

Unite Here Data Breach

February 2024

UNITE HERE suffered a data breach that exposed the personal information of more than 790,000 individuals, specifically members and staff of certain unions, health funds and the San Diego UNITE HERE Pension Fund.

medQ, Inc. Data Breach

February 2024

Approximately 54,353 people may have had their sensitive medical information exposed in a data breach affecting medQ, which provides imaging workflow software to practices across the country.

EdisonLearning has reported that individuals’ names and Social Security numbers may have been compromised in a March 2023 data breach.

More than 11,000 patients had their personal information exposed in a data breach affecting a business associate of Bay Area Heart Center, which is located in Florida.

Virginia Farm Bureau is notifying customers and employees that their personal information may have been exposed in an October 2022 data breach.

More than 2.3 million patients are affected by a data breach at Medical Management Resource Group (MMRG), which does business as American Vision Partners and provides administrative support to ophthalmology practices.

Golden Corral is notifying individuals of a data breach in which an unauthorized actor gained access to the company's computer systems and viewed and/or acquired the personal information of more than 180,000.

AGC America, Inc. reported that over 20,000 individuals may have had their personal information exposed during a data breach in December 2023.

Circuit board manufacturer MFLEX has reported that individuals' personal, medical and financial information may have been compromised in a month-long data breach.

Singlepoint, which provides HR outsourcing solutions, is notifying individuals of a data breach in which an unauthorized individual acquired files containing personal data in November 2023.

Sage Home Loans (formerly Lenox Financial Mortgage Corporation) reported a December 2023 data breach that may have exposed the personal information of more than 27,000 individuals.

Coleman Health Services has reported that consumers' personal information may have been exposed when an unauthorized user gained access to employee email accounts in the fall of 2023.

Bayer Heritage Federal Credit Union has revealed that an unauthorized party gained access to company files in a breach affecting more than 60,000 individuals.

National Advisors Trust is notifying consumers about a data security incident that may have compromised their private information in April 2023.

Infosys McCamish Systems, which provides technology platforms and services for the financial industry, is notifying consumers about a data breach affecting more than 6 million individuals.

Concentra Health Services reported that nearly 4 million patients' sensitive information may have been exposed in a data breach affecting medical transcription services provider Perry Johnson & Associates.

Knight Barry Title, Inc. reported in January 2024 that a data breach exposed consumers’ private information, including their Social Security numbers.

Washington National reported that over 20,000 people may have had their personal information exposed in a "SIM swapping" attack that allowed an unauthorized party to access a senior officer's cellular account.

A "SIM swapping" attack targeting Bankers Life has exposed the personal information of more than 45,000 individuals.

Kansas Joint & Spine Specialists has reported a data breach that may have impacted nearly 84,000 current and former patients.

Ardent Health Services has begun notifying patients of a November 2023 ransomware attack that may have exposed their personal and medical information.

Des Moines Orthopaedic Surgeons reported that nearly 307,900 individuals may have had their personal and medical information exposed in a February 2023 data breach.

More than 344,000 Jason's Deli customers may have had their personal information exposed in a December 2023 security incident involving credential stuffing.

Non-bank mortgage lender loanDepot, Inc. suffered a data breach in January 2024 that exposed the sensitive personal information of approximately 16.6 million individuals.

Horne, LLP Data Breach

December 2023

Horne, LLP, which provides business advisory and consulting services, suffered a data breach in December 2021 and is now notifying as many as 170,000 affected individuals.

Ashford Data Breach

January 2024

Ashford announced a data breach that may have exposed the names and Social Security numbers of more than 46,900 individuals in September 2023.

Medical helicopter company Air Methods announced that patient information may have been exposed when a laptop was stolen from a billing office in November 2023.

Current and former employees of LA-based Oak View Group are receiving notice that their personal information may have been exposed in a data breach.

Carnegie Mellon University reported in January 2024 that an unauthorized party accessed thousands of individuals’ personal information during a data breach last year.

Cooper Aerobics Enterprises, Inc., which runs a fitness center, clinic, and medical imaging firm, is notifying individuals about a data security incident in which an unauthorized party may have accessed servers containing sensitive personal and health-related information.

Private equity firm Nautic Partners has announced a data breach that affects more than 7,800 individuals and reportedly exposed Social Security numbers.

Hair Club for Men reported that over 4,000 current and former employees may have had their personal information exposed in a data breach.

Mississippi healthcare system Singing River has reported an August 2023 ransomware incident that may have exposed patients' personal and medical information.

ConsensioHealth, a medical management services organization that supports independent physician practices, is notifying thousands of patients after a data breach exposed personal and health information.

More than 10,000 individuals are reportedly affected by a cyberattack involving Fincantieri Marine Group that took place in April 2023.

Both employees and consumers are affected by an Academy Mortgage Corporation data breach that potentially exposed names and Social Security numbers.

UKG Inc. Data Breach

January 2024

UKG, which provides payroll and workforce management solutions, is reporting that the personal information of New York City Health + Hospitals employees may have been exposed inadvertently.

Electrostim Medical Services, Inc. (EMSI) has reported a data breach affecting more than 500,000 individuals that compromised personal and medical information.

Panasonic Avionics Corporation, which provides in-flight entertainment and communication systems, has reported a cybersecurity incident that exposed information of an undisclosed number of individuals.

HealthEC Data Breach

December 2023

HealthEC, LLC, a technology company that provides a platform used by healthcare organizations for care coordination, analytics and more, has announced a data breach that reportedly affects nearly 4.5 million patients of the company's clients.

Transformative Healthcare is notifying consumers that their personal information may have been exposed in a 2023 data breach that targeted its former subsidiary, Fallon Ambulance Service.

Retina Group of Washington has reported that nearly 456,000 individuals may have had their personal and medical information exposed in a March 2023 data breach.

LoanCare has reported a data breach affecting over 1.3 million consumers whose information was maintained by the company through its relationship with their mortgage loan servicer.

California waste management company Recology Inc. is notifying employees that their information may have been exposed in a November 2023 data breach.

Kimco Staffing Services announced a June 2023 data breach that may have exposed over 69,000 employees' names and Social Security numbers.

ESO Solutions, a software provider for hospitals and healthcare systems, announced a data breach that may have exposed 2.7 million patients' personal and medical information.

Comcast is notifying Xfinity customers of a massive data breach that occurred in October 2023 and potentially exposed the personal information of over 35 million individuals.

Mercy Medical Center in Cedar Rapids, Iowa announced that it was one of the victims of a massive data breach affecting medical transcription services provider Perry Johnson & Associates.

A data breach reported by Keenan & Associates may have exposed employees' personal and health information for nearly a week in August 2023.

Regional Family Medicine in Mountain Home, Arkansas has reported a data breach that may have exposed the personal information of over 80,000 patients and employees in June 2023.

Southern Illinois Healthcare's Harrisburg Medical Center reported that nearly 148,000 individuals may have had their personal and medical information exposed in a December 2022 data breach.

Financial Risk Mitigation has reported a data breach that exposed nearly 10,800 individuals' personal information in September 2023.

Red Roof Inn Data Breach

December 2023

Red Roof recently announced that a September 2023 data breach exposed the private information of more than 27,000 individuals.

Neuromusculoskeletal Center of the Cascades and Cascade Surgicenter (The Center) announced that patients’ personal and health information was compromised during a data breach experienced between October 2 and October 3, 2023.

Americold Logistics reported an April 2023 data breach that may have exposed sensitive personal information belonging to its employees and their dependents.

Approximately 2.5 million patients, employees and their dependents had their personal information exposed in a May ransomware attack affecting the Kentucky-based healthcare system.

Henry Schein has begun notifying its employees, customers and suppliers that their sensitive information may have been exposed in an October 2023 data breach.

Cardiovascular Consultants reported that thousands of patients, policy holders and guarantors had their sensitive information exposed in a data breach earlier this year.

Around December 5, 2023, Advantis Global began sending out notice of a data breach that reportedly impacted over 5,000 individuals.

Pan-American Life Insurance Group announced that consumers' personal information was exposed in May 2023 during a data breach that targeted the MOVEit file transfer software.

East River Medical Imaging reported that thousands of its patients and employees had their sensitive information exposed in a September 2023 data breach.

United Regional Health Care System in Wichita Falls, Texas announced a data breach that may have exposed nearly 37,000 individuals' personal and medical information.

Japanese electronics company Alps Alpine reported that its North American subsidiary was affected by a data breach that exposed employees' personal information.

Zeroed-In Technologies, a data analytics firm, reported an August 2023 data breach affecting nearly 2 million individuals, including applicants and current and former employees of its clients.

Nonprofit organization Big Brothers Big Sisters of America reported a March 2023 data breach that may have exposed thousands of consumers' personal, financial and medical information.

Mission Community Hospital in California's San Fernando Valley is notifying patients of a data security incident that may have exposed their personal and medical information.

NSC Technologies is notifying employees and applicants that their personal information was exposed in a data breach it experienced in June 2023.

Clear Spring Life and Annuity Company has reported that personal information belonging to those associated with its annuity contracts and life insurance policies may have been exposed in a February 2023 ransomware attack.

More than 8 million people may have had personal - and, in some cases, medical and health information - exposed in a data breach involving MOVEit and announced by Welltok.

Pahl & McCay Data Breach

November 2023

In November 2023, Pahl & McCay announced that consumers’ names, addresses and Social Security numbers were exposed in a security data incident.

AutoZone Data Breach

November 2023

AutoZone reported in November 2023 that almost 185,000 customers had their personal information exposed in the massive MOVEit data breach.

Medical College of Wisconsin reported that patients' personal and medical information was exposed during the massive MOVEit data breach in May 2023.

In November 2023, Warren General Hospital reported a data breach that affected thousands of patients and employees.

Midlothian, Texas pharmacy U.S. Drug Mart reported that it experienced a data breach that may have compromised consumers' personal and medical information.

Okta Data Breach

November 2023

Current and former Okta employees, as well as their dependents, may have had their personal information exposed in a September 2023 data security incident.

Rusnak Auto Group announced a data breach that may have exposed consumers' names and Social Security numbers between June 13 and June 16, 2023.

Tri Counties Bank reported that in February 2023, an unauthorized party may have gained access to personal information belonging to customers and employees, among others.

In November 2023, Stanley Steemer reported a hacking incident that has exposed the private information of thousands of individuals.

MESVision and Gerber Life Insurance Company are sending notices to nearly 27,000 individuals whose personal and health insurance information may have been exposed in a 2023 data breach affecting a widely used file transfer system known as MOVEIt.

Synergy Healthcare Services reported that a data breach may have exposed personal and health information of patients and others affiliated with certain long-term care providers.

MESVision Data Breach

November 2023

Medical Eye Services (which does business as MESVision) announced a May 2023 data breach that may have compromised the personal information of its vision insurance plan participants.

Northwell Health has confirmed that it its patients' personal and medical information was exposed in a data breach affecting third-party vendor Perry Johnson & Associates, Inc.

The International Association of Sheet Metal, Air, Rail and Transportation Workers (SMART) reported that private data belonging to over 62,000 individuals was exposed in a data breach discovered in early September.

Financial Asset Management Systems is reporting a late March 2023 security incident that allowed certain information stored on its network to be obtained by an unauthorized party.

Kyocera AVX reported that over 39,000 individuals may have had their full names, Social Security numbers and other information exposed in a data breach it experienced between February 16 and March 30, 2023.

Hawkins Delafield & Wood LLP has reported a data security incident that may have exposed names and Social Security numbers.

Pacific Union College reported that over 56,000 individuals' personal and financial information was compromised in a data breach that occurred between March 5 and 19, 2023.

CRC Insurance Services reported that in January 2023, an unauthorized party may have gained access to personal and health information belonging to consumers associated with its insurance carrier and agency partners.

Deer Oaks is notifying consumers that their protected health information may have been accessed without authorization during a security incident discovered in early September.

Greater Rochester Independent Practice Association, a vendor for health providers and insurance plans, reported that over 279,000 individuals' information was exposed as part of the MOVEit data breach.

Georgia Northside Ear, Nose, and Throat began notifying patients in September 2023 that their personal and medical information was exposed in a data breach discovered in August of this year.

Cook County Health has confirmed that up to 1.2 million patients had their protected health information exposed during a data breach that affected one of the Illinois healthcare network's vendors.

Hilb reported in November 2023 that it experienced a data breach affecting over 81,000 individuals when an unauthorized party gained access to several employee email accounts.

Postmeds (which does business as TruePill) has reported that individuals' names and prescription information were revealed during a data breach that occurred between August 30 and September 1, 2023.

ProMach announced a data breach in October 2023 that may have compromised the personal and health information of current and former employees and potentially their beneficiaries and dependents.

Peerstar LLC announced a data breach during which an unauthorized third party may have accessed the personal and health information of more than 11,000 patients between February 22 and March 3, 2023.

Atlas Healthcare announced that personal information belonging to over 10,000 residents of three of its Connecticut assisted living facilities was exposed in a data breach in January 2023.

Around October 27, 2023, Drug Free Workplaces began sending out notice of a data breach that reportedly impacted 37,705 individuals.

Ben E. Keith Company reported in October 2023 that consumers’ names and Social Security numbers were exposed in a data breach it experienced earlier this year.

Progressive Leasing reported in late October that thousands of its customers and employees had their information exposed in a September 2023 data breach.

Sunflower Bank began notifying customers in September 2023 that their personal information was exposed in a data breach that targeted MOVEit.

Pension Benefit Information is notifying PHH Mortgage customers that their personal information may have been exposed in a massive data breach that targeted MOVEit in late May 2023.

Pension Benefit Information is notifying Athene policyholders of a data breach that may have compromised their personal information in late May 2023.

Pension Benefit Information reported in July 2023 that the massive MOVEit data breach exposed information belonging to customers affiliated with MassMutual Ascend and its subsidiaries.

Pension Benefit Information is notifying Nassau Life and Annuity customers that their personal information may have been exposed in the massive MOVEit data breach that occurred in late May 2023.

Pension Benefit Information reported in August 2023 that the massive MOVEit data breach impacted consumers affiliated with Consolidated Edison Company of New York (ConEd).

Taylored employees, as well as those working for related entities, may have had their personal information exposed in a data incident.

Radius reported in September 2023 that consumer information obtained through the company's collection efforts on behalf of its clients was exposed in the massive MOVEit data breach.

BHI Energy Data Breach

October 2023

BHI Energy is notifying more than 90,000 individuals that their personal information may have been compromised after a hacker gained access to the company's network.

Jaco Oil Company reported on September 1, 2023 that files containing private data belonging to consumers had been copied from its computer network by an unauthorized individual.

Around August 29, 2023, Cornwell Quality Tools began sending out notice of a data breach that reportedly impacted 11,884 individuals.

Pension Benefit Information is sending data breach letters to insureds and prospective insureds of Standard Insurance Company whose personal information was compromised in a data breach.

In September 2023, Texas Medical Liability Trust reported that a breach of its systems may have compromised the data of nearly 60,000 individuals.

In September 2023, Honeywell reported a data breach that has exposed individuals’ names and Social Security numbers.

On August 17, 2023, Blue Cross Blue Shield of Arizona reported that 47,485 people were affected by a data breach that impacted TMG Health, a company that provides data services to the insurer.

Over 190,000 individuals have been impacted by a data breach Gaston College announced on August 25, 2023.

American National reported in August 2023 that customers' personal and medical information was exposed during the massive MOVEit data breach in late May.

A data breach at the National Student Clearinghouse has affected more than 50,000 individuals and potentially exposed names and Social Security numbers.

It’s been reported that thousands of individuals have been affected by a data security incident announced in September 2023 by Founder Project Rx, Inc., which does business as Encore Pharmacy.

Vi Living Data Breach

September 2023

Vi Living reported in September 2023 that an unauthorized party accessed consumers' personal information during a March data breach.

A data breach at Mortgage Industry Advisory Corporation was reported on September 5, 2023 and affects nearly 9,000 individuals.

A data breach affecting Lifeline Systems Company was announced in September 2023 and may have exposed health and medical information.

A data breach experienced by Delaware Life Insurance Company in May 2023 has exposed private information belonging to its policy contract holders.

Data Media Associates began notifying patients in August 2023 that their personal and health information was exposed in a data breach it discovered in early June of this year.

Acadia Health Data Breach

September 2023

On August 2, 2023, Acadia Health (Just Kids Dental) experienced a data breach that compromised patients' and employees' personal and health information.

In October 2023, Lennar Corporation reported a hacking incident that affected thousands of individuals.