Portend Breaches

Ezynetic Pte. Ltd June 14, 2024 Threat actors known as GhostR claim to have stolen more than 50 GB of files on loan borrowers from the Singapore MLCB (the Moneylenders Credit Bureau). The attack was carried out on Ezynetic Pte. Ltd and affected 12 moneylenders using their services.

Gramercy Surgery Center June 14, 2024 • [ leak, healthcare ] The threat actor(s) known as Everest Team add Gramercy Surgery Center (Gramercy) to its leak site, and claims to have acquired more than 460 GB of files.

Truist Bank June 13, 2024 • [ hack, leak, finance ] Truist Bank, a leading U.S. commercial bank, confirms this week that its systems were breached in an October 2023 cyberattack after a threat actor posted some of the company's data for sale on a hacking forum.

Two undisclosed users of the OKX cryptocurrency exchange June 12, 2024 The OKX cryptocurrency exchange and security partner SlowMist investigate a multi-million dollar exploit through a SIM swap attack, that resulted in two stolen user accounts.

Traverse City June 12, 2024 • [ ransomware, malware, government ] Traverse City is hit with a ransomware attack and shuts down the IT infrastructure.

Toronto District School Board June 12, 2024 • [ ransomware, malware, education ] The Toronto District School Board (TDSB) warns that it suffered a ransomware attack on its software testing environment and is investigating whether any personal information was exposed.

Community Dental Care, Inc. June 12, 2024 • [ data leak, hacked ] Community Dental Care (CDC), a Minnesota nonprofit dental healthcare provider, reported that an unauthorized third party may have viewed and obtained sensitive personal information and protected health information from its systems. CDC detected unauthorized activity on 12/20/2024 and investigated, later concluding that on or around 12/06/2024 an intruder may have accessed and acquired certain data. CDC performed a data review to determine what information was involved and identify affected individuals, completing that review on 03/24/2025, and posted a public notice on 03/28/2025. Potentially exposed information varied by person and could include names, Social Security numbers, addresses, dates of birth, drivers license or other government IDs, passport numbers, medical information, and health insurance information. CDC indicated it would update notices if additional information types were identified and offered guidance and services to affected individuals.

City of Cleveland June 11, 2024 • [ ransomware, malware, government ] The City of Cleveland, Ohio, is currently dealing with a cyberattack that has forced it to take citizen-facing services offline, including the public offices and facilities at Erieview and the City Hall. Few days later the city confirms a ransomware attack.

UwU Lend June 11, 2024 The UwU Lend crypto platform says it has made an offer to a threat actor behind the theft of nearly $20 million worth of ETH.

Life360 June 11, 2024 Safety and location services company Life360 says it was the target of an extortion attempt after a threat actor breached and stole sensitive information from a Tile customer support platform.

QuoteWizard June 10, 2024 • [ financial, misconfiguration, finance ] Financial services firm LendingTree confirms that QuoteWizard, one of its subsidiaries, was potentially affected by a cybersecurity incident following a wider attack on customers of data storage company Snowflake.

Niconico June 10, 2024 A popular Japanese video-sharing platform, Niconico, is investigating a cybersecurity incident that forced the company to suspend its services.

Cylance June 10, 2024 Cybersecurity company Cylance confirms the legitimacy of data being sold on a hacking forum, stating that it is old data stolen from a "third-party platform" (allegedly Snowflake).

United Seating and Mobility d/b/a Numotion June 10, 2024 • [ ransomware, malware, manufacturing ] United Seating and Mobility, a provider of wheelchair and mobility equipment that does business as Numotion, discloses that an unauthorized third party had access to its computer systems and used ransomware to encrypt files. 602,000 individuals are affected.

Pure Storage June 10, 2024 • [ hack, misconfiguration, technology ] Pure Storage, a leading provider of cloud storage systems and services, confirms that attackers breached its Snowflake workspace and gained access to what the company describes as telemetry information.

Loopring June 9, 2024 • [ financial, misconfiguration, finance ] Loopring announces a security breach involving its two-factor authentication service Guardian, affecting two wallets, with one of them was drained of about $5 million.

Absolute Telecom June 9, 2024 • [ hack, technology ] GhostR claims to have stolen over 34 gigabytes of data belonging to Singapore-based telecom company Absolute Telecom PTE Ltd.

mSpy (2024) June 9, 2024 • [ hack, leak, technology ] In June 2024, a huge trove of data from spyware maker mSpy was obtained by hacktivists and published online. Comprising of 142GB of user data and support tickets along with 176GB of more than half a million attachments, the data contained 2.4M unique email addresses, IP addresses names and photos. The data was predominantly support tickets seeking help to install the spyware on target devices, whilst the attachments contained various data including screen grans of financial transactions, photos of credit cards and nude selfies.

New York Times June 8, 2024 • [ leak, misconfiguration, technology ] The New York Times confirms that internal source code and data was leaked on the 4chan message board after being stolen from the company's GitHub repositories in January 2024.

CoinGecko June 7, 2024 • [ leak, finance ] CoinGecko, the worlds largest independent cryptocurrency data aggregator, experiences a data breach through its third-party email platform, GetResponse.

Recent Breaches