3.5 million records, including data more personal than an email addresshate to minimize the data breach at Epsilon, a service company that sends out 40 billion emails a year for its corporate customers and got cracked by a group that stole data that could equal millions of consumer email addresses.
Big customers whose data was taken included Citibank, Disney, Hilton, JP Morgan Chase, Target, Tivo, Barclays Bank.
It's hard to be more high profile than that, even if you're the kind of company the actual customers are never supposed to see.
Texas did it bigger, though. A lot bigger.
http://www.pcworld.com/article/224899/texas_security_gaffe_dwarfs_epsilon_data_breach.html