Full List

Search

Recent Breaches

• Summit Pathology and Summit Pathology Laboratories April 18, 2024 • [ ransomware, healthcare ] Summit Pathology and Summit Pathology Laboratories (Summit) in Colorado notify of a breach affecting 1,813,538 patients. The Medusa ransomware gang is allegedly responsible for the breach.
• Sport 2000 April 18, 2024 • [ leak, retail ] In April 2024, the French sporting equipment manufacturer Sport 2000 announced it had suffered a data breach. The data was subsequently put up for sale on a popular hacking forum and included 4.4M rows with 3.2M unique email addresses alongside names, physical addresses, phone numbers, dates of birth and purchases made by store name. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
• Mobile Guardian April 17, 2024 The names and e-mail addresses of parents and teachers of 127 primary and secondary schools are leaked after Mobile Guardian, a mobile platform on students personal learning devices is hacked.
• Grodno Azot April 17, 2024 • [ hack, manufacturing ] Belarusian politically motivated hacktivists from the Belarusian Cyber-Partisans group claim to have attacked the countrys largest state-run manufacturer of fertilizers, Grodno Azot, for its alleged involvement in political repression, sanctions evasion, and human rights violations.
• New York Bill Drafting Commission April 17, 2024 • [ hack, malware, government ] The New York Bill Drafting Commission is taken down by a malware attack.
• T2 April 17, 2024 In April 2024, 95k records from the T2 tea store were posted to a popular hacking forum. Data included email and physical addresses, names, phone numbers, dates of birth, purchases and passwords stored as scrypt hashes.
• Hospital Simone Veil in Cannes (CHC-SV) April 16, 2024 • [ ransomware, malware, healthcare ] The Hospital Simone Veil in Cannes (CHC-SV) announces that it was targeted by a cyberattack, severely impacting its operations and forcing staff to go back to pen and paper. The LockBit ransomware operation claims responsibility for the attack.
• Argentina's driver licenses April 16, 2024 • [ hack, leak, government ] A threat actor allegedly hacks a database holding 5.7M Argentinas drivers licenses, requesting a payment of $3,000 USD for whoever wishes to purchase the images of Argentine licenses.
• Albatross April 15, 2024 • [ hack, leak, manufacturing ] Ukrainian hackers from Cyber Resistance claim to have breached the Russian drone developer Albatross, leaking 100 gigabytes of data, including internal documentation, technical data and drawings of various types of unmanned aerial vehicles.
• Northeast Ohio Neighborhood Health (NEON) April 15, 2024 • [ ransomware, malware, healthcare ] The Medusa ransomware group claims responsibility for a cyberattack on the servers of Northeast Ohio Neighborhood Health (NEON), a company providing healthcare services, and the exfiltration of nearly 51GB of data.
• Coffee County, GA April 15, 2024 Coffee County is hit with a cyber attack.
• Atlantic States Marine Fisheries Commission April 15, 2024 • [ ransomware, malware, government ] The Atlantic States Marine Fisheries Commission (ASMFC) suffers an 8Base ransomware attack.
• The Post and Courier April 15, 2024 • [ ransomware, malware ] The Post and Courier is hit with a BlackSuit ransomware attack.
• Meduza April 15, 2024 • [ hack, ddos ] The Russian independent news website Meduza faces repeated attempts to disrupt its digital infrastructure.
• Octapharma April 15, 2024 • [ ransomware, malware, healthcare ] The plasma donation company Octapharma suffers a BlackSuit ransomware attack.
• MovieBoxPro April 15, 2024 • [ leak, misconfiguration, technology ] In April 2024, over 6M records from the streaming service MovieBoxPro were scraped from a vulnerable API. Of questionable legality, the service provided no contact information to disclose the incident, although reportedly the vulnerability was rectified after being mass enumerated.
• Israel's radar system April 14, 2024 • [ hack, government ] An Iranian cyber group named Handala claims to have breached Israel's radar systems and sent hundreds of thousands of threatening text messages to Israeli citizens.
• Frontier Communications April 14, 2024 • [ ransomware, malware, technology ] American telecom provider Frontier Communications is hit by a cyberattack claimed by the RansomHub ransomware operation.
• Neiman Marcus April 14, 2024 • [ hack, misconfiguration, retail ] In May 2024, the American luxury retailer Neiman Marcus suffered a data breach which was later posted to a popular hacking forum. The data included 31M unique email addresses, names, phone numbers, dates of birth, physical addresses and partial credit card data (note: this is insufficient to make purchases). The breach was traced back to a series of attacks against the Snowflake cloud service which impacted 165 organisations worldwide.
• Le Slip Français April 13, 2024 • [ leak, retail ] In April 2024, the French underwear maker Le Slip Franais suffered a data breach. The breach included 1.5M email addresses, physical addresses, names and phone numbers.