Full List

Search

Recent Breaches

• Lyon Management Group, Inc. (Lyon Living) March 15, 2024 • [ data leak ] Lyon Management Group, Inc. (doing business as Lyon Living) reported that an unauthorized third party gained access to its network between March 14 and March 15, 2024, and acquired files containing personal information. The company stated that the breach involved names and other PII belonging to tenants and employees. There was no evidence of encryption or disruption, and the number of affected individuals was not disclosed.
• On Q Financial March 14, 2024 • [ ransomware, malware, finance ] On Q Financial discloses a breach due to the ScreenConnect CVE-2024-1709 and CVE-2024-1708 vulnerabilities. The BianLian ransomware group claims responsibility for the attack.
• RAF plane carrying U.K. Defence Secretary Grant Shapps March 14, 2024 An RAF plane carrying U.K. Defence Secretary Grant Shapps has its GPS signal jammed while flying close to Russian territory.
• New Mexico Administrative Office of the District Attorneys March 14, 2024 • [ ransomware, malware, government ] The New Mexico Administrative Office of the District Attorneys is hit with a ransomware attack.
• Rhysida March 13, 2024 • [ ransomware, malware, manufacturing ] A cyberattack dirsrupts operations at MarineMax, one of the worlds biggest boat sellers. The Rhysida ransomware group claims responsibility for the attack.
• Alabama State Government websites March 13, 2024 • [ hack, ddos, government ] The hacktivist group Anonymous Sudan claims credit for a cyberattack that disrupts Alabama state government.
• France Travail March 13, 2024 • [ leak, government ] France Travail, formerly known as Ple Emploi, warns that threat actors breached its systems and may leak or exploit personal details of an estimated 43 million individuals.
• Mintlify March 13, 2024 • [ leak, misconfiguration, technology ] Documentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month.
• Acer Philippines March 12, 2024 Acer Philippines confirms that employee data was stolen in an attack on a third-party vendor who manages the company's employee attendance data after a threat actor with the moniker of 'ph1ns' leaked the data on a hacking forum.
• South African Government Pensions Administration Agency (GPAA) March 12, 2024 • [ ransomware, malware, government ] The LockBit ransomware gang says it was behind an attack on South Africas government workers pension fund last month, which has hampered the organizations operations and disrupted pension payments.
• French government agencies March 11, 2024 • [ hack, government ] A number of French government agencies are hit by intense cyberattacks
• Taxpayers in the U.S. March 11, 2024 As the tax deadline approaches, the U.S. Internal Revenue Service (IRS) warns taxpayers about impersonation scams.
• Meduza March 11, 2024 The Russian independent media organization Meduza says that it has been targeted by an unprecedented cyber campaign ahead of the upcoming presidential election.
• Koffie Beyers March 11, 2024 • [ hack, manufacturing ] Koffie Beyers, a Belgian coffee roaster, is hit with a cyber attack.
• La Mesa March 11, 2024 La Mesa temporarily suspends public comments via Zoom following a rash of antisemitic hate speech during last month's City Council meeting.
• Senior Citizens, Inc. March 11, 2024 • [ hack, healthcare ] Senior Citizens, Inc., a nonprofit in Savannah, Georgia, detected suspicious network activity on March 11, 2024. Investigation revealed that an unauthorized party accessed and acquired files containing names and Social Security numbers. Affected individuals were identified by November 26 and breach notifications were mailed beginning December 31, 2024, offering identity monitoring.
• Panda Restaurant Group March 10, 2024 • [ leak ] Panda Restaurant Group discloses a data breach after threat actors compromised its corporate systems and stole the personal information of an undisclosed number of associates.
• Acuity March 9, 2024 The threat actor known as IntelBroker claims responsibility for a data breach targeting Acuity, a Federal contractor. The breach resulted in the theft of sensitive data and documents from two prominent U.S. government entities: U.S. Immigration and Customs Enforcement (ICE) and U.S. Citizenship and Immigration Services (USCIS). One month later Acuity confirms the breach.
• Microsoft March 8, 2024 Microsoft reveals that APT29 (a.k.a. Cozy Bear, Midnight Blizzard, Nobelium, The Dukes) used the information initially exfiltrated from their corporate email systems to access portions of the source code.
• Lithuania March 8, 2024 • [ espionage, government ] A report published by Lithuanian security services warne that China has escalated its espionage operations against Lithuania.