2015 was a tumultuous year for data breaches. Between the infamous Ashley Madison hack to millions of customers being affected by a security breach for Blue Cross Blue Shield, the public learned a lot about its security in the hands of some of the biggest companies in the country. We’ve broken down the top 10 security breaches this year and where they are now. Here are the first five:
- Trump Hotels. While Trump was hot on the campaign trail, seven of his hotels were the victim of a security breach that compromised the debit and credit card information of thousands of their visitors. It’s a relatively small hack compared to others that have made the list, but because Trump and his hotels are such public names, it gained traction in the media. The Trump Hotel Collection has since removed the malware that caused the hack and are offering one year of fraud resolution and identity theft protection to customers who were affected.
- Patreon. This crowd funding service became a source of anguish for its users when, in October, the site’s data was published online, including names, email addresses and posts. Fortunately, credit card information and Social Security Numbers were not part of the leaked data, but the site is still trying to sort through the damage. It reported that at least 15 gigabytes of data has been compromised, and the number of victims continues to grow.
- CVS Pharmacy. CVS Pharmacy’s photo printing division, named CVS Photo, had its website hacked earlier this year, and the credit card data, email and postal addresses, phone numbers and passwords of its customers were compromised. Though a total number of victims has yet to be reported, many customers expressed concern over both their medical information and photos they uploaded to the site.
- Scottrade. The stock trading company lost information on 4.6 millions of its customers. While financial information was thankfully left out, Scottrade reported that the hackers had access to names and physical address for any Scottrade user whose account was made before February 2014.
- VTech. The Hong Kong-based toy manufacturer, which is known for its electronic learning products, had its database hacked in late November, which infiltrated five million parent accounts and nearly 6.4 million child user profiles. The Office of the Privacy Commissioner for Personal Data in Hong Kong as well as state attorney generals in Connecticut and Illinois are working to investigate the lost data, while VTech promised to delete it from its server to prevent further damage.
If you’re concerned about protecting your identity, you can invest in a credit monitoring service that can alert you of certain activity that may indicate fraud. This way you can know when to take action to prevent further damage to your credit.