Portend Breaches

Hong Ngoc General Hospital June 15, 2024 • [ data leak ] In June 2024 hackers advertised on cybercrime forums the sale of 112,000 patient and staff records stolen from Hong Ngoc General Hospital, including names, contact information, medical and financial data. The method of compromise was not disclosed, and no encryption was reported.

1,899 victims in Singapore June 14, 2024 • [ financial, hack, malware ] A Singapore police-led law enforcement operation dismantles a regional cybercrime ring that carried out malware-enabled scams to steal tens of millions of dollars from victims since 2023.

Globe Life June 14, 2024 • [ hack, finance ] American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data after breaching one of its web portals.

Association of Texas Professional Educators June 14, 2024 The Association of Texas Professional Educators (ATPE) sends out breach notifications warning of a cyberattack that exposed sensitive information.

Keytronic June 14, 2024 • [ ransomware, leak, malware ] PCBA manufacturing giant Keytronic warns it suffered a data breach after the Black Basta ransomware gang leaked 530GB of the company's stolen data two weeks ago.

Amtrak June 14, 2024 • [ hack, brute-force ] Amtrak reveals that the Guest Rewards Accounts were hacked in credential stuffing attacks

Consulting Radiologists June 14, 2024 • [ hack, healthcare ] Consulting Radiologists notifies more than 500,000 individuals that their sensitive information was accessed and potentially acquired by threat actors earlier this year.

Richland School District June 14, 2024 • [ hack, education ] Richland School District is left without phones and Internet, after someone gained unauthorized access to the network.

Ezynetic Pte. Ltd June 14, 2024 Threat actors known as GhostR claim to have stolen more than 50 GB of files on loan borrowers from the Singapore MLCB (the Moneylenders Credit Bureau). The attack was carried out on Ezynetic Pte. Ltd and affected 12 moneylenders using their services.

Gramercy Surgery Center June 14, 2024 • [ leak, healthcare ] The threat actor(s) known as Everest Team add Gramercy Surgery Center (Gramercy) to its leak site, and claims to have acquired more than 460 GB of files.

Truist Bank June 13, 2024 • [ hack, leak, finance ] Truist Bank, a leading U.S. commercial bank, confirms this week that its systems were breached in an October 2023 cyberattack after a threat actor posted some of the company's data for sale on a hacking forum.

Two undisclosed users of the OKX cryptocurrency exchange June 12, 2024 The OKX cryptocurrency exchange and security partner SlowMist investigate a multi-million dollar exploit through a SIM swap attack, that resulted in two stolen user accounts.

Traverse City June 12, 2024 • [ ransomware, malware, government ] Traverse City is hit with a ransomware attack and shuts down the IT infrastructure.

Toronto District School Board June 12, 2024 • [ ransomware, malware, education ] The Toronto District School Board (TDSB) warns that it suffered a ransomware attack on its software testing environment and is investigating whether any personal information was exposed.

Community Dental Care, Inc. June 12, 2024 • [ data leak, hacked ] Community Dental Care (CDC), a Minnesota nonprofit dental healthcare provider, reported that an unauthorized third party may have viewed and obtained sensitive personal information and protected health information from its systems. CDC detected unauthorized activity on 12/20/2024 and investigated, later concluding that on or around 12/06/2024 an intruder may have accessed and acquired certain data. CDC performed a data review to determine what information was involved and identify affected individuals, completing that review on 03/24/2025, and posted a public notice on 03/28/2025. Potentially exposed information varied by person and could include names, Social Security numbers, addresses, dates of birth, drivers license or other government IDs, passport numbers, medical information, and health insurance information. CDC indicated it would update notices if additional information types were identified and offered guidance and services to affected individuals.

City of Cleveland June 11, 2024 • [ ransomware, malware, government ] The City of Cleveland, Ohio, is currently dealing with a cyberattack that has forced it to take citizen-facing services offline, including the public offices and facilities at Erieview and the City Hall. Few days later the city confirms a ransomware attack.

UwU Lend June 11, 2024 The UwU Lend crypto platform says it has made an offer to a threat actor behind the theft of nearly $20 million worth of ETH.

Life360 June 11, 2024 Safety and location services company Life360 says it was the target of an extortion attempt after a threat actor breached and stole sensitive information from a Tile customer support platform.

QuoteWizard June 10, 2024 • [ financial, misconfiguration, finance ] Financial services firm LendingTree confirms that QuoteWizard, one of its subsidiaries, was potentially affected by a cybersecurity incident following a wider attack on customers of data storage company Snowflake.

Niconico June 10, 2024 A popular Japanese video-sharing platform, Niconico, is investigating a cybersecurity incident that forced the company to suspend its services.

Recent Breaches