A number of newly discovered data breaches have been reported recently, including a Florida breach that may have exposed the personal information of nearly 400,000 people.
The breach affects some students and teachers at Florida Virtual School, the largest virtual state school in the country. Florida Virtual School said the breach happened because a vendor left their server open and unprotected, Fox 35 Orlando reports.
No financial information was revealed in the breach, but names, birth dates, usernames, and passwords were exposed. The breach was discovered recently, but it may have occurred up to two years ago. Up to 368,000 students and 18,000 teachers may have been affected, and the school is offering a free year of identity theft monitoring for anyone “whose information was in the system from May 2016 through last month.”
A security breach at BJC HealthCare in St. Louis may have exposed the personal information of 33,420 patients, the company has noted in a news release. A data server configuration error “made it possible for stored images of identifying documents to be accessible through the Internet without the appropriate security controls” from May 9, 2017, to Jan. 23, 2018.
Apparently, the publicly exposed patient information included names, addresses, telephone numbers, birthdates, Social Security numbers, driver’s license numbers, insurance information and treatment-related information. BJC has sent patients information on how to enroll in identity theft protection (H/T Associated Press).
Another recently reported data breach at a school may have affected 15,000 people at Fresno State in California. An external hard drive was stolen from a campus building, according to a statement from the university. That hard drive includes former student athletes, sports camp attendees, and athletics employees — “the vast majority of data files were from 2003 to 2014,” the university says.
The files on the hard drive may have contained a wealth of information, including “names, addresses, phone numbers, dates of birth, full or last four digits of Social Security numbers, credit card numbers, driver’s license numbers, passport numbers, user names and passwords, health-insurance numbers and personal health information.” The school will offer free credit monitoring to those whose Social Security numbers, financial account information, or driver’s licenses were exposed.