10 of the Top Data Breaches of the Decade

The Internet cried foul last week when news broke that an AT&T security breach exposed the e-mail addresses of at least 100,000 owners of Apple's iPad 3G.

But industry observers are quick to point out that this is hardly the first -- and hardly the worst -- data breach that the tech world has ever seen.

"The fact is 114,000 is an impressive number and they're e-mail addresses. ... [But] that's almost public information," said Dan Tynan, a technology reporter and co-author of the technology humor site eSarcasm.

Some companies publish relevant e-mail addresses on their sites, and even when companies don't outright reveal addresses, it's often easy to guess them, he said.

"What these guys did was something that spammers do every single day," he said.

While it's discomforting when any personal information is compromised, Tynan said that this breach didn't expose seriously valuable information, such as social security numbers, bank account numbers or medical records.

But other security breaches over the past decade have disclosed the kind of information that could potentially threaten the people behind the data.

Since 2005, the Privacy Rights Clearinghouse, a San Diego-based non-profit, has maintained an exhaustive list of data breaches by corporations, government agencies and other institutions. While the Clearinghouse acknowledges that it doesn't include every breach, it says it makes an effort to list breaches of all kinds, including the number of people affected.

"It creates an awareness both among consumers that this kind of thing does happen. For business, governmental and other organizations, it reminds them of the fact that many people have entrusted them with very valuable information," said Paul Stephens, director of policy and advocacy for the organization. "And [it reminds them that] if they don't keep that information secure there will be consequences, both in terms of finances, remediating the breach, as well as the loss of trust by their customers."

People value information differently, he said, so it's difficult to say which breaches are more significant than others.

"They're all signficant," he said. But "It's comparing apples to oranges. In some cases it's financial, in some cases it's medical."

Still, in terms of the number of people affected, he said 10 especially large breaches come to mind.

Below, take a look at 10 of the biggest data breaches of the decade.

Heartland Payment Systems -- 2009

In what has been called the largest credit card crime of all time, in 2009, Heartland Payment Systems announced that hackers had broken into the computers it uses to process about 100 million transactions each month for 175,000 merchants.

Heartland, which is based in Princeton, New Jersey, processes card payments for restaurants and other businesses. The hack was uncovered in January, after Visa and MasterCard notified Heartland about suspicious transactions.

In August 2009, three men were indicted by a grand jury on charges related to masterminding a scheme to steal more than 130 million credit and debit card numbers and personally identifying information from Heartland, 7-Eleven Inc. and other companies.

Last month, Heartland agreed to pay MasterCard issuers $41.4 million to settle claims over the data breach, according to The Associated Press. In order for the deal to go through, 80 percent of MasterCard issuers who filed claimed must accept the settlement by June 25.

Page
  • 1
  • |
  • 2
  • |
  • 3
Join the Discussion
blog comments powered by Disqus
 
You Might Also Like...
See It, Share It
Newborns at this hospital on Christmas Day get the special stockings as a keepsake.
Magee-Womens Hospital at the University of Pittsburgh Medical Center
PHOTO: Indian Christian devotees watch a fireworks display outside St. Peters Church in Allahabad on Dec. 24, 2014, on Christmas Eve.
Sanjay Kanojia/AFP/Getty Images
PHOTO: Anthony Lemons glances to family and friends at the Cuyahoga County Common Pleas Court
Marvin Fong/The Plain Dealer/AP Photo