Learn more about the latest data breaches

The list of companies involved in data breaches is seemingly endless and continuing to grow. And that’s just the data breaches that make national news; many never come to light. Universities, health insurance companies, retailers ranging from mega to small--any institution that collects data about its customers is vulnerable to attack, and hackers seem to be enjoying a new era of data breaches.

Privacy Rights Clearinghouse lists breaches as they are exposed here, with a ticker counting the number of records exposed (quickly approaching 1 billion as of early 2016).


Facebook breach

Facebook has announced that 50 million accounts may have been breached. While Facebook does not currently know whether any personal data had been accessed by hackers, or if the breach allowed hackers to take over accounts, Facebook does acknowledge that it is possible and that it is looking into it.

T-Mobile breach

T-Mobile has announced that hackers have stolen the personal data of around 2 million of its customers. While passwords, credit card numbers, and Social Security numbers were not stolen, personal information including usernames, billing zip codes, phone numbers, email addresses, account numbers, and whether customers prepaid or postpaid their...

Panera breach

Panera Bread has acknowledged that their online ordering system was the subject of a data leak. Customer information including names, email addresses, home addresses, birth dates and the final four payment card digits was compromised. The breach was first discovered in August 2017 and was fixed in April 2018....

Saks Fifth Avenue / Lord and Taylor breach

On April 1, 2018, Lord & Taylor and Saks Fifth Avenue announced that their luxury clothing stores were the subject of a data breach. The data breach is believed to have compromised 5 million customers’ payment card information. Shoppers who used a credit or debit card at...

MyFitnessPal breach

The fitness and diet tracking app, MyFitnessPal, recently announced that it was the subject of a 150 million account data breach.

Orbitz breach

The travel booking website Orbitz announced that 880,000 payment cards were hacked in a breach that spanned almost two years.

Sonic Drive-In breach

Sonic Drive-In announced that nearly 3,600 of its locations were subject to a point-of-sale data breach. This breach is believed to have affected up to 5 million of its customers’ credit card numbers.

Equifax breach

Credit reporting company Equifax announced that it was the subject of a massive data breach on September 7, 2017. An estimated 143 million consumers may have had their personally identifiable information compromised.It appears that Equifax’s records were breached from mid-May through July 2017.

The Buckle breach

On June 16, 2017, The Buckle Inc., a clothing retailer that operates over 450 stores in the U.S., announced that its brick and mortar locations were the subject of a point-of-sale data breach. The breach is believed to have compromised many of its customers’ credit card numbers, although no exact numbers have been released....

Cloud Pets breach

“Cloud Pets,” a company that makes stuffed animals that allow children to communicate with distant loved ones, has suffered a data breach. Cyber experts estimate that the connected stuffed animal manufacturer had more than 820,000 user accounts compromised. The user accounts contained sensitive information including the email addresses of the parents, passwords, child profile...