Full List

Search

Recent Breaches

• Ukrainian civil service officials and military personnel June 4, 2024 • [ espionage, malware, government ] The Computer Emergency Response Team of Ukraine (CERT-UA) warns of a campaign targeting Ukrainian civil service officials and military personnel via the DarkCrystal RAT delivered through Signal.
• Northern Minerals June 4, 2024 • [ ransomware, malware, energy ] Northern Minerals issues an announcement warning that it suffered a cybersecurity breach resulting in some of its stolen data being published on the dark web. The BianLian ransomware group claims responsibility for the attack,
• Synnovis June 4, 2024 • [ ransomware, malware, healthcare ] A Qilin ransomware attack affecting pathology and diagnostic services provider Synnovis impacts healthcare services at multiple major NHS hospitals in London.
• High-profile TikTok accounts belonging to multiple companies and celebrities June 4, 2024 TikTok fixes a 0-Day vulnerability exploited by attackers to hijack high-profile TikTok accounts belonging to multiple companies and celebrities.
• Victorian Freight Specialists June 4, 2024 • [ hack ] The threat actor known as GhostR claims to have stolen data from Australian logistics company Victorian Freight Specialists.
• Spytech June 4, 2024 In July 2024, spyware maker Spytech suffered a data breach that exposed data collected as recently as the previous month. Designed to "invisibly record everything users do", the breach exposed information related to both purchasers and targets of the product. Target data collection (and subsequent exposure) included the infected computer name, browsing history, applications used, usernames of authenticated users, keywords being monitored, file operations (creation and deletion), computer usage times and email addresses, often captured within the spyware's logs. The data also included the names, purchases and md5 password hashes of purchasers.
• Multiple organizations June 3, 2024 • [ hack, malware, technology ] A massive trove of 361 million email addresses from credentials stolen by password-stealing malware, in credential stuffing attacks, and from data breaches is added to the Have I Been Pwned data breach notification service.
• Verny June 3, 2024 • [ hack, retail ] Verny, a popular Russian discount retail chain with over 1,000 stores nationwide is hit by a cyberattack over the weekend that disrupts its services for several days.
• Official Microsoft India account on X (formerly Twitter) June 3, 2024 • [ financial, hack, phishing ] The official Microsoft India account on X (formerly Twitter), with over 211,000 followers, is hijacked by cryptocurrency scammers to impersonate Roaring Kitty, the handle used by notorious meme stock trader Keith Gill.
• Gemini June 3, 2024 • [ hack, finance ] Cryptocurrency exchange Gemini warns it suffered a data breach incident caused by a cyberattack at its Automated Clearing House (ACH) service provider, whose name was not disclosed.
• Nidec Corporation June 3, 2024 • [ ransomware, malware, manufacturing ] Nidec Corporation informs that threat actors behind a ransomware attack it suffered earlier this year stole data and leaked it on the dark web.
• Special Health Resources June 2, 2024 • [ ransomware, malware, healthcare ] Special Health Resources suffers a BlackSuit ransomware attack.
• Germany's Christian Democratic Union June 1, 2024 • [ hack, misconfiguration, government ] Germany's Christian Democratic Union (CDU), the country's leading opposition party, is hit by a major cyberattack and has taken parts of its IT-infrastructure off the grid as a precautionary measure. According to sources, the attackers exploited the CVE-2024-24919 Check Point vulnerability.
• Allendale Long-Term Care Home June 1, 2024 A cybersecurity incident involving third-party software at Allendale Long-Term Care Home in Milton exposes personal electronic health records from 2005 to this summer.
• Robinsons Malls June 1, 2024 • [ hack, retail ] In June 2024, the Philippines' largest shopping-mall operators Robinsons Malls suffered a data breach stemming from their mobile app. The incident exposed 195k unique email addresses along with names, phone numbers, dates of birth, genders and the user's city and province.
• Government of Turks and Caicos June 1, 2024 • [ ransomware, malware, government ] The government of Turks and Caicos says is making progress in its recovery from a recent ransomware attack that has caused widespread issues on the islands.
• Ya-moon June 1, 2024 • [ data leak ] A hacker alias Valerie claims a breach of the Ya-moon forum in June 2024, publishing user data and chat logs.
• Hugging Face May 31, 2024 • [ hack, technology ] AI platform Hugging Face says that its Spaces platform was breached, allowing threat actors to access authentication secrets for its members.
• DMM Bitcoin May 31, 2024 The Japanese cryptocurrency exchange DMM Bitcoin announces that threat actors stole 4,502.9 Bitcoin (BTC), approximately $304 million (48.2 billion yen), from the its wallets.
• Billericay School May 31, 2024 • [ hack, malware, education ] The Billericay School is hit with a malware attack.