Los Angeles, CATwo large data breaches have been reported today, one by University of California Los Angeles (UCLA) Health System and the other by CVS Photo. The UCLA data breach took place as far back as September 2014, according to UCLA and may have compromised personal information of some 4.5 million people. They said they detected suspicious activity around October 2014 and by May they were sure that hackers had accessed parts of its databases which contain names, addresses, Social Security numbers and other information.
CVS Pharmacies Inc shut down its photo services website early Friday, and issued a statement that its customers may have had their information compromised as a result of a cyber attack on a third-party vendor that manages the site, CBS News
READ MORE data breach LEGAL NEWS
The website cvsphoto.com was inactive Friday, replaced by a note from the company that read, "We have been made aware that customer credit card information collected by the independent vendor who manages and hosts CVSPhoto.com may have been compromised. As a precaution, as our investigation is underway we are temporarily shutting down access to online and related mobile photo services. We apologize for the inconvenience." CBS News.
They also specified in its statement that online photo customer accounts are "completely separate from CVS.com and our pharmacies," and that "financial transactions on CVS.com and in-store are not affected."
The FBI has been brought in to investigate the data breach at UCLA, and the health care provider said it would be notifying those affected by letter. Further, the have said they will provide their customers with one year’s free identify theft recovery and restoration services, as well as a year of credit monitoring for those whose Social Security or Medicare identification numbers may have been compromised.