Home Tell a Friend! Contact ICFE Link Exchange Search ICFE Subscribe ICFE About the ICFE
ICFE News Releases ICFE in the News Children and Money Financial Education Personal Financial Counseling with Paul S. Richard, RFC Credit Card Tips Credit File Correction Mending Spending Links and Resources Order Options

ICFE eNEWS #19-16 - April 29th 2019

Recent Data Breach Summaries

Date of Incident: Unknown
Date Made Public: March 22, 2019
Records Affected: 2.3 million
Data Compromised: The Federal Emergency Management Agency (FEMA) acknowledged that it provided a contractor with the personal and financial details of an estimated 2.3 million U.S. disaster survivors who used FEMAís Transitional Sheltering Assistance program after the California wildfires in 2017 and Hurricanes Harvey, Irma, and Maria. FEMA was authorized to share some information about the individuals with the contractor, but it unintentionally shared additional sensitive data, including home address, bank name, electronic funds transfer number, and bank transit number. FEMA says that it will not be notifying impacted individuals or offering a method for people to inquire whether their information was exposed, because the agency doesn't believe the information was stolen or abused.
Click here to learn more

Verity Health System
Date of Incident: January 16, 2019
Date Made Public: March 25, 2019
Records Affected: 14,894
Data Compromised: Verity Health System reported a third data breach in recent months that exposed patient personal health information as a result of a phishing attack on employee email accounts. The information exposed may include: names, addresses, phone numbers, dates of birth, diagnoses, treatment information, health insurance policy numbers, subscriber numbers, patient ID numbers, billing codes, and some Social Security numbers and driverís license numbers. All patients affected by the breach have been notified by mail, and Verity is offering complimentary credit monitoring services for individuals whose Social Security number or driverís license number was exposed.
Click here to learn more

Date of Incident: Unknown
Date Made Public: April 3, 2019
Records Affected: 540 million
Data Compromised: Researchers discovered that more than 540 million records from two Facebook app providers were posted publicly on Amazon.comís cloud computing servers. The exposed information was from the media firm Cultura Colectiva and a now defunct Facebook-integrated app called ďAt the Pool.Ē The Cultura Colectiva data included identification numbers, comments, reactions, and account names for 540 million users. The ďAt the PoolĒ data included names, email addresses, and unprotected passwords for 22,000 users. Once it was made aware of the issue, Facebook worked with Amazon to take down the databases.
Click here to learn more

Buca Di Beppo, Planet Hollywood, and Other Restaurant Chains
Date of Incident: May 23, 2018-March 18, 2019
Date Made Public: March 29, 2019
Records Affected: estimated 2 million
Data Compromised: Earl Enterprises, the parent company of Buca di Beppo, Planet Hollywood, and other restaurant chains, reported that malicious software installed on its point-of-sale machines may have exposed credit and debit card information of its customers. The malware was installed in various locations of Buca di Beppo, Chicken Guy, Earl of Sandwich, Mixology, Planet Hollywood, and Tequila Taqueria restaurants from May 23, 2018 to March 18, 2019. Exposed information may have included: card numbers, expiration dates, and some cardholder names. According to one cybersecurity researcher, credit and debit card numbers of 2 million customers of Earl Enterprises may already be available on the dark web. Earl Enterprises has provided an online tool that customers can use to see if their information was compromised.
Click here to learn more

Georgia Tech
Date of Incident: late March 2019
Date Made Public: April 2, 2019
Records Affected: 1.3 million
Data Compromised: Unauthorized access to a Georgia Institute of Technology web application may have exposed personal information for up to 1.3 million individuals, including some current and former faculty, students, staff, and student applicants. Information extracted from the system may have included names, addresses, Social Security numbers, and dates of birth. Affected individuals will be contacted regarding available credit monitoring services.
Click here to learn more

Burrell Behavioral Health
Date of Incident: August 2018
Date Made Public: April 1, 2019
Records Affected: 67,493
Data Compromised: Burrell Behavioral Health is notifying 67,493 patients that their medical records may have been exposed when an error left a server containing personal health information exposed on the internet. Exposed patient information may include: names, addresses, phone numbers, dates of birth, dates and types of service at Burrell, insurance details, driverís license numbers, and Social Security numbers. The information was formatted in a way that was not accessible through general internet searches, and there has been no evidence that any individuals or web crawlers accessed the data. Patients whose Social Security numbers were exposed are being offered a year of free identity monitoring and protection services.
Click here to learn more

Outlook, Hotmail, and MSN Mail
Date of Incident: January 1, 2019-March 28, 2019
Date Made Public: April 12, 2019
Records Affected: Unknown
Data Compromised: Microsoft has confirmed that some users of its web email services, Outlook, Hotmail, and MSN Mail, were targeted by hackers, possibly exposing some sensitive information. It is believed that a hacker or group of hackers first accessed the account of a Microsoft customer support agent, and then used that information to access individual usersí email accounts. Exposed information may include email folder names, email subject lines, the names of other email addresses the user communicated with, and in some cases, email content. According to reports, paid enterprise accounts were not affected. Microsoft reports that it is sending breach notification emails to affected users.
Click here to learn more

Instagram, Facebook
Date of Incident: Unknown
Date Made Public: April 18, 2019
Records Affected: Millions of Instagram users, 1.5 million Facebook users
Data Compromised: Facebook previously disclosed that it had been storing plain-text passwords for hundreds of millions of Facebook users since 2012. The company has now announced that the passwords of millions of Instagram users were also being stored in a readable format. Facebook states that it plans to notify the newly affected users. In a second issue, Facebook confirmed that it has uploaded email contact lists for 1.5 million users since May 2016 when it asked new users for their email passwords during signup. Facebook says that it ended the email password verification practice in April and that it will delete the email contacts data.
Click here to learn more

Paul S Richard PhotoICFE eNEWS is available FREE upon request by visiting our Web site and filling out the contact form, and selecting "Yes" for "Add to Mailing List. Please pass this eNEWS on to your peers and interested others and invite them to subscribe for free. Also, visit the ICFE's new Web site: StudentDebtHelp.org

Sent by:

Paul S. Richard
President - Executive Director
Institute of Consumer Financial Education (ICFE)

About the ICFE:

The Institute of Consumer Financial Education (ICFE) was founded in 1982 by the late Loren Dunton (creator of the Certified Financial Planner (CFP) designation and founder of the College for Financial Planning in Denver, CO.) The ICFE is dedicated to helping consumers of all ages to improve their spending practices, increase savings and use credit more wisely.

The ICFE is an award winning, nonprofit, consumer education organization that has helped millions of people through its financial continuing education courses programs and resources. In addition to eight Certification courses covering identity theft, credit files, credit repair and credit scoring, among others, it also publishes the Do-It-Yourself Credit File correction Guide, which is updated annually. The ICFE has distributed over one million Credit/Debit Card Warning Labels and Credit/Debit Card Sleeves world wide.

The ICFE is a partner with the national Jump$tart Coalition for Financial Literacy and the California Jump$tart chapter. The ICFE staff is also active with San Diego Saves and Military Saves, both offshoots of America Saves.

The ICFE is also an on-line help for consumers who spend too much. ICFE's spending help was featured in PARADE Magazine in the Intelligence Report section. The money helps and tips are from the ICFE's Money Instruction Book, our course in personal finance.

The ICFE helps consumers and students with mending spending, learning about the proper use of credit, budget and expense guidelines, how to set up and implement a spending-plan and also how to access financial education courses and how to teach children about money. Other ICFE services include: Ask Mr. G library, a free eNews service, and an online resource center for students, parents and educators, plus financial education learning tools in the ICFE Book Store.

Home ] ICFE News Releases ] ICFE in the News ] Children and Money ] Financial Education ] Resource Center ] Credit Card Tips ][ Credit File Correction ] Mending Spending ] Links and Resources ]  [ Online Store ]


Copyright ©  1997 - by Paul S. Richard
and the Institute of Consumer Financial Education, All Rights Reserved.
View our
Privacy Policy Our Terms and Conditions

Institute of Consumer Financial Education
PO Box 34070
San Diego, Ca 92163
Paul S. Richard, Executive Director
Phone 619-239-1401

FAX 619-923-3284

Questions for www.financial-education-icfe.org Click to go to Website Contact Us or 

Website Design Donated by Daniel G Hughes Fresno and Half Price Toner Refills

Please Tell An Associate, Friend or Family Member About the ICFE