-
Municipality of Sant Antoni de Portmany
February 1, 2024
•
[ ransomware, malware, government ]
The Municipality of Sant Antoni de Portmany in the Island of Ibiza, suffers a ransomware attack.
-
Groton Public Schools
February 1, 2024
•
[ hack, education ]
Groton Public Schools is the victim of a cyber attack.
-
Hewlett Packard Enterprise
February 1, 2024
•
[ leak, technology ]
Hewlett Packard Enterprise (HPE) is investigating a potential new breach after a threat actor put allegedly stolen data up for sale on a hacking forum, claiming it contains HPE credentials and other sensitive information.
-
Flydubai
February 1, 2024
•
[ hack, ddos ]
Anonymous Sudan claims responsibility for a DDOS attack against the UAEs Flydubai Airline.
-
Unnamed Lincoln Project vendor
February 1, 2024
•
[ financial, phishing, government ]
The anti-Donald Trump super PAC Lincoln Project discloses to have lost $35,000 to a business email compromise (BEC) scam.
-
Crypto Users
February 1, 2024
•
[ financial, malware, finance ]
The threat actors behind the 2022 LastPass breach were able to steal an estimated $5.36 million in crypto assets from over 40 wallet addresses. The wave of attacks is said to have originated from the 2022 incident in the password manager service LastPass.
-
SurveyLama
February 1, 2024
•
[ leak, technology ]
In February 2024, the paid survey website SurveyLama suffered a data breach that exposed 4.4M customer email addresses. The incident also exposed names, physical and IP addresses, phone numbers, dates of birth and passwords stored as either salted SHA-1, bcrypt or argon2 hashes. When contacted about the incident, SurveyLama advised that they had already "notified the users by email".
-
Telecommunications organizations in Southeast Asia
February 1, 2024
•
[ espionage, technology ]
Telecommunications organizations in Southeast Asia have been targeted by a state-sponsored threat actor known as CL-STA-0969 to facilitate remote control over compromised networks.
Palo Alto Networks Unit 42 said it observed multiple incidents in the region, including one aimed at critical telecommunications infrastructure between February and November 2024.
-
Financial Business And Consumer Solutions
February 1, 2024
•
[ data leak ]
Debt Collector Updated Affected Count For 2024 Breach To 4,253,394 Individuals.
-
Multiple organizations in Japan
January 31, 2024
Researchers from Itochu discover an updated version of a backdoor called LODEINFO, distributed via spear-phishing attacks, and used against targets in Japan from the Chinese threat actor APT10.
-
Lurie Children’s Hospital
January 31, 2024
•
[ ransomware, malware, healthcare ]
Lurie Childrens Hospital suffers a network outage, later confirmed to be a ransomware attack by the Rhysida group demanding a $3.4M ransom.
-
Encore Bank
January 31, 2024
•
[ hack, phishing, finance ]
Encore Bank files a notice of data breach after discovering that an unauthorized party was able to gain access to an employees email account.
-
Almerys
January 31, 2024
•
[ hack, healthcare ]
French healthcare services firm Almerys also suffers a cyberattack that exposed the data of policyholders and healthcare professionals in the country. The combination of the two breaches compromises the information of 33 million individuals.
-
Albania's Institute of Statistics (INSTAT)
January 31, 2024
Homeland Justice, an Iran-linked hacking group with a history of targeting Albanian state agencies and businesses says that it was behind an attack on the countrys Institute of Statistics (INSTAT), which is responsible for census information and other official statistics.
-
Willis Lease Finance Corporation
January 31, 2024
•
[ ransomware, malware, finance ]
Aircraft parts dealer Willis Lease Finance Corporation (WLFC) informs the US Securities and Exchange Commission that it fell victim to a cyberattack. The Black Basta ransomware gang claims responsibility for the attack.
-
Chris Larsen (Ripple's co-founder and executive)
January 31, 2024
Threat actors steal around $112 million worth of the Ripple-focused cryptocurrency XRP from a crypto wallet belonging to the Ripples co-founder and executive chairman Chris Larsen.
-
Emmanuel College
January 31, 2024
•
[ leak, education ]
Emmanuel College files a notice of data breach after discovering that a cybersecurity incident affected the personal information of nearly 90k individuals.
-
Viamedis
January 31, 2024
•
[ leak, healthcare ]
French healthcare services firm Viamedis suffers a cyberattack that exposed the data of policyholders and healthcare professionals in the country.
-
Crescent Community Health Center
January 31, 2024
Crescent Community Health Center (CCHC) files a notice of data breach after discovering that information that had been provided to the company was subject to unauthorized access.
-
Mitre Corporation
January 31, 2024
The MITRE Corporation says that a state-backed threat actors breached its systems (MITRE's Networked Experimentation, Research, and Virtualization Environment - NERVE) in January 2024 by chaining the two Ivanti VPN zero-days CVE-2023-46805 and CVE-2024-21887.
