1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.
1,285
Total Actions
14
Jurisdictions
$35.3B+
Total Fines Tracked
New York Attorney General Letitia James led a coalition of 11 other attorneys general in filing a lawsuit against the Trump administration for illegally granting Elon Musk and DOGE unauthorized access to the Treasury Department’s central payment system, exposing Social Security numbers, bank account information, and other private data of tens of millions of Americans. A federal judge granted a temporary restraining order on February 8, 2025, blocking access and ordering destruction of all obtained records, with the coalition seeking a preliminary injunction to continue the bar on unauthorized access.
Blue & Co., LLC (Business Associate, IN) reported a HIPAA breach affecting 228,999 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James led a coalition of 19 state attorneys general in filing a lawsuit against the Trump administration and U.S. Department of the Treasury over unauthorized access to Americans’ sensitive personal data. The lawsuit alleges the Treasury Department illegally granted Elon Musk and the Department of Government Efficiency (DOGE) access to its central payment system containing bank account details, Social Security numbers, and other private information, violating federal law and the U.S. Constitution. The coalition seeks an injunction to halt the policy and a declaration that the access expansion is unlawful and unconstitutional.
Connecticut Attorney General William Tong filed a lawsuit against President Trump and the U.S. Treasury Department to stop DOGE's unauthorized access to the Treasury's central payment system, which contains sensitive personal information like bank details and Social Security numbers. The lawsuit seeks an injunction and a declaration that the new policy granting access to Elon Musk and DOGE members is unlawful and jeopardizes data security.
New Jersey Attorney General Matthew J. Platkin joined a coalition of 19 attorneys general in filing a lawsuit against the Trump administration for illegally granting Elon Musk and DOGE unauthorized access to the U.S. Treasury Department's central payment system, which contains sensitive personal information such as Social Security numbers and bank details. The lawsuit seeks an injunction to halt this policy and a declaration that it is unlawful and unconstitutional.
VectraRx Mail Pharmacy Services, LLC (Healthcare Provider, AZ) reported a HIPAA breach affecting 109,383 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
U.S. HEALTHWORKS-SMMPP, L.C. (Business Associate, AZ) reported a HIPAA breach affecting 10,673 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Connecticut Attorney General William Tong joined a coalition of 12 attorneys general to announce they will file a lawsuit against the U.S. Department of the Treasury and DOGE for unlawfully granting Elon Musk and DOGE staff access to sensitive personal information and payment systems. The AGs argue this unauthorized access threatens privacy rights and essential payments for millions of Americans. The lawsuit seeks to revoke access and prevent further interference.
Primary Health-SMMPP, L.C. (Business Associate, AZ) reported a HIPAA breach affecting 67,567 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
St. Marys NDS LLC (Business Associate, AZ) reported a HIPAA breach affecting 11,715 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Escambia Community Clinics, Inc. dba Community Health Northwest Florida (Healthcare Provider, FL) reported a HIPAA breach affecting 143,969 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Primary Health Services Center, Inc. (Healthcare Provider, LA) reported a HIPAA breach affecting 17,202 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
ARC Community Services, Inc. (Healthcare Provider, WI) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Community Health Center, Inc. (Healthcare Provider, CT) reported a HIPAA breach affecting 1,060,936 individuals. Breach type: Hacking/IT Incident. Location of breached information: Electronic Medical Record, Network Server.
Methodist Homes of Alabama and Northwest Florida (Healthcare Provider, AL) reported a HIPAA breach affecting 908 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
New York Attorney General Letitia James secured a $450,000 settlement from three companies distributing eufy-branded home security cameras for failing to implement adequate data security measures. The companies’ cameras had unencrypted video streams accessible without authentication, exposing private consumer footage. The settlement requires the companies to implement stronger security protocols, including encryption, vulnerability testing, and a comprehensive information security program.
$450K
Benefits Management Group, Inc. (Business Associate, IL) reported a HIPAA breach affecting 501 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Spring River Mental Health & Wellness (Healthcare Provider, KS) reported a HIPAA breach affecting 3,250 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Inlet Health dba Communicare (Healthcare Provider, KY) reported a HIPAA breach affecting 3,771 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Apex Custom Software (Business Associate, TX) reported a HIPAA breach affecting 1,500 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
University Diagnostic Medical Imaging, PC (Healthcare Provider, NY) reported a HIPAA breach affecting 138,080 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Holdrege Memorial Homes, Inc. (Healthcare Provider, NE) reported a HIPAA breach affecting 1,446 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Asheville Eye Associates, PLLC (Healthcare Provider, NC) reported a HIPAA breach affecting 204,984 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Allegheny Health Network Home Medical Equipment LLC and Allegheny Health Network Home Infusion LLC (Healthcare Provider, PA) reported a HIPAA breach affecting 292,773 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Behavioral Health Resources (Healthcare Provider, WA) reported a HIPAA breach affecting 49,213 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Community Treatment Solutions (Healthcare Provider, NJ) reported a HIPAA breach affecting 950 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
The FTC settled charges against GoDaddy for failing to implement adequate data security measures for its web hosting services, which led to multiple breaches and misled customers about its security protections. The proposed order requires GoDaddy to establish a comprehensive information security program and hire an independent assessor for regular reviews.
Mid America Physician Services (Healthcare Provider, KS) reported a HIPAA breach affecting 104,513 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
Samaritan Counseling Center of the Fox Valley (Healthcare Provider, WI) reported a HIPAA breach affecting 956 individuals. Breach type: Hacking/IT Incident. Location of breached information: Email.
Newport Harbor Pathology Medical Group, Inc. (Healthcare Provider, CA) reported a HIPAA breach affecting 119,341 individuals. Breach type: Hacking/IT Incident. Location of breached information: Network Server.
All data sourced from official government enforcement pages.