Portend Breaches

Young Consulting (now Connexure) October 4, 2024 • [ ransomware, malware, technology ] Young Consulting sends data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024.

EigenLayer October 4, 2024 • [ hack, phishing, finance ] EigenLayer team says it is investigating an unapproved selling activity of about 1.6 million of EigenLayers EIGEN tokens, worth about $5.7 million. In a subsequent update the company reveals that the unapproved token-selling incident was due to a hack, after a malicious attacker compromised an email thread involving an investors token transfer into custody.

Pacific Pulmonary Medical Group October 4, 2024 • [ ransomware, malware, healthcare ] The Pacific Pulmonary Medical Group (PPMG) is hit with an Everest Team ransomware attack.

American Water October 3, 2024 American Water, the largest publicly traded U.S. water and wastewater utility company, is forced to shut down some of its systems after a cyberattack.

Wayne County October 3, 2024 • [ ransomware, malware, government ] Wayne County in Michigan is dealing with an alleged ransomware attack that has shut down all government websites and limited the operations of several offices.

Bloom Hearing Specialists October 3, 2024 • [ ransomware, malware, healthcare ] Bloom Hearing Specialists warns thousands of customers about a ransomware attack stealing sensitive data.

Universal Music Group October 3, 2024 • [ leak ] Universal Music Group informs hundreds of individuals about a recent data breach impacting their personal information.

Vocational Training Center, or Berufsbildungszentrum (BBZ) October 3, 2024 The Vocational Training Center, or Berufsbildungszentrum (BBZ), in the canton of Schaffhausen is the victim of a ransomware attack.

ADT October 2, 2024 Home and small business security company ADT discloses it suffered a breach after threat actors gained access to its systems using stolen credentials and exfiltrated employee account data.

Red Barrels October 2, 2024 • [ hack, technology ] Canadian video game developer Red Barrels warns that the development of its Outlast games will likely be delayed after the company suffered a cyberattack impacting its internal IT systems and data.

Governments and armed forces, think tanks, academic researchers, and Ukrainian entities October 1, 2024 • [ espionage, malware, government ] Researchers at Trend Micro reveal the details of a campaign carried out by the Russia-linked APT29 threat actor, leveraging malicious Remote Desktop Protocol (RDP) configuration files.

Undisclosed nuclear-related organization October 1, 2024 • [ espionage, malware, energy ] Researchers at Kaspersky reveal that the Lazarus Group, the threat actor linked to the Democratic People's Republic of Korea (DPRK), has been observed leveraging a "complex infection chain" targeting at least two employees belonging to an unnamed nuclear-related organization. The attacks, part of Operation Dream Job, culminated in the deployment of a new modular backdoor referred to as CookiePlus,

Switch October 1, 2024 • [ leak, misconfiguration, technology ] In October 2024, the Hungarian IT headhunting service Switch inadvertently exposed thousands of customer records via a public GitHub repository. The exposed data contained job applications with names, email addresses and in some cases, commentary on the applicant.

Barbados Revenue Authority September 30, 2024 230GB of records from the Barbados Revenue Authority, such as property tax records and vehicle owners registration records, are being offered for sale.

Rackspace September 30, 2024 Rackspace tells customers that threat actors exploited a zero-day vulnerability in ScienceLogic, a third-party application it was using, and abused that vulnerability to break into its internal performance monitoring environment.

Byte Federal September 30, 2024 US Bitcoin ATM operator Byte Federal discloses a data breach that exposed the data of 58,000 customers after its systems were breached using a GitLab vulnerability.

digiDirect September 29, 2024 In September 2024, a data breach sourced from the Australian retailer digiDirect was published to a popular hacking forum. The breach exposed over 300k rows of data including email and physical address, name, phone number and date of birth. Approximately half the email addresses were on domains from external marketplaces including Amazon, eBay and Westfield.

Richmond Community Schools September 28, 2024 • [ ransomware, malware, education ] Richmond Community Schools in Indiana posts to social media that student and staff information in the PowerSchool software system was breached in a ransomware attack.

Rafic Hariri International Airport September 28, 2024 • [ hack, government ] The Israeli cyber army allegedly hacks into the control tower of the Rafic Hariri International Airport in Beirut, and threatens an Iranian civilian plane attempting to land, forcing it to return.

SelectBlinds September 28, 2024 • [ financial, malware, retail ] More than 200,000 who shopped for blinds or window dressing this year had their credit card information and other data stolen after threat actors placed malware on the website of SelectBlinds, a major retailer.

Recent Breaches