Portend Breaches

Republican presidential nominee Donald Trump JD Vance, and people associated with the Democratic campaign of Kamala Harris October 25, 2024 Chinese threat actors engaged in a broader espionage operation targeting cellphones used by Republican presidential nominee Donald Trump JD Vance, and people associated with the Democratic campaign of Kamala Harris.

Carolina Arthritis October 25, 2024 ThreeAM adds Carolina Arthritis to its leak site.

Free October 25, 2024 Free, a major internet service provider (ISP) in France, confirms that threat actors breached its systems and stole customer personal information.

Sensitive government and police databases in Italy October 25, 2024 • [ hack, espionage, government ] Four people are arrested in Italy after a business intelligence company called Equalize is accused of hacking sensitive government and police databases to create dossiers for its clients.

U.S. Government October 24, 2024 • [ financial, government ] A threat actor appears to have stolen approximately $20 million in stablecoins and ETH from wallets belonging to the U.S. Government.

City of Coppell October 23, 2024 • [ ransomware, malware, government ] The RansomHub operation takes credit for a damaging attack on the city of Coppell, Texas.

Esport North Africa October 23, 2024 • [ leak, technology ] A threat actor known as Shooked, leaks the personal details of over 180,000 Esport North Africa (ESNA) users just one day before the tournament is set to begin in Morocco.

Russian Foreign Ministry October 23, 2024 The Russian Foreign Ministry is targeted by a severe DDoS attack, coinciding with the major BRICS summit taking place in the country, spokeswoman Maria Zakharova said.

Unnamed Service Provider in France October 23, 2024 Frances Ministry of Labor and Employment announces that it discovered a cyberattack against an unnamed service provider, and suspected to have impacted the data of young people it was helping get into employment.

Transak October 21, 2024 A recent data breach at the crypto payment processor Transak exposes the information of more than 92,000 people after an employee's laptop was accessed.

The Wayback Machine October 20, 2024 The Internet Archive is breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens.

Hot Topic October 19, 2024 In October 2024, retailer Hot Topic suffered a data breach that exposed 57 million unique email addresses. The impacted data also included physical addresses, phone numbers, purchases, genders, dates of birth and partial credit data containing card type, expiry and last 4 digits.

Grupo Aeroportuario del Centro Norte October 18, 2024 Grupo Aeroportuario del Centro Norte announces that a cyber incident forced its IT team to turn to backup systems. The RansomHub operation claims to be responsible for the incident, and threatens to leak 3 terabytes of stolen data.

Cyprus’ critical infrastructure and government websites October 18, 2024 • [ hack, government ] Cyprus critical infrastructure and government websites are targeted in a series of coordinated cyberattacks claimed by several pro-Palestine hacker groups.

Social October 18, 2024 • [ financial, misconfiguration, finance ] Tapioca DAO suffers a $4.5 million exploit after an attacker compromised its native token's vesting contract.

Moldova’s parliamentary email servers October 17, 2024 Moldovas parliamentary email servers are hit by a cyberattack just ahead of the countrys presidential election and a referendum on joining the European Union.

Free October 17, 2024 • [ leak, technology ] In October 2024, French ISP "Free" suffered a data breach which was subsequently posted for sale and later, leaked publicly. The data included 14M unique email addresses along with names, physical addresses, phone numbers, genders, dates of birth and for many records, IBAN bank account numbers. Free advised that the numbers were "not enough to make a direct debit from a bank".

DoctorsToYou October 16, 2024 • [ ransomware, malware, healthcare ] The RansomHub ransomware group adds a listing for DoctorsToYou in New York to their leak site. After they realize the organization is non-profit, they claim to return the data and provide a decryptor.

Undisclosed organization October 16, 2024 An undisclosed company is hacked after accidentally hiring a North Korean cyber criminal as a remote IT worker.

Radiant Capital October 16, 2024 More than $50 million worth of cryptocurrency is stolen from decentralized finance platform Radiant Capital.

Recent Breaches