Full List

Search

Recent Breaches

• La Mesa March 11, 2024 La Mesa temporarily suspends public comments via Zoom following a rash of antisemitic hate speech during last month's City Council meeting.
• Senior Citizens, Inc. March 11, 2024 • [ hack, healthcare ] Senior Citizens, Inc., a nonprofit in Savannah, Georgia, detected suspicious network activity on March 11, 2024. Investigation revealed that an unauthorized party accessed and acquired files containing names and Social Security numbers. Affected individuals were identified by November 26 and breach notifications were mailed beginning December 31, 2024, offering identity monitoring.
• Panda Restaurant Group March 10, 2024 • [ leak ] Panda Restaurant Group discloses a data breach after threat actors compromised its corporate systems and stole the personal information of an undisclosed number of associates.
• Acuity March 9, 2024 The threat actor known as IntelBroker claims responsibility for a data breach targeting Acuity, a Federal contractor. The breach resulted in the theft of sensitive data and documents from two prominent U.S. government entities: U.S. Immigration and Customs Enforcement (ICE) and U.S. Citizenship and Immigration Services (USCIS). One month later Acuity confirms the breach.
• Microsoft March 8, 2024 Microsoft reveals that APT29 (a.k.a. Cozy Bear, Midnight Blizzard, Nobelium, The Dukes) used the information initially exfiltrated from their corporate email systems to access portions of the source code.
• Lithuania March 8, 2024 • [ espionage, government ] A report published by Lithuanian security services warne that China has escalated its espionage operations against Lithuania.
• Roku March 8, 2024 • [ hack, brute-force, technology ] Roku says it canceled unauthorized subscriptions and refunded more than 15,000 accounts after discovering what they called suspicious activity.
• HuntStand March 8, 2024 In March 2024, millions of records scraped from the hunting and land management service HuntStand were publicly posted to a popular hacking forum. The data included 2.8M unique email addresses with many records also containing name, date of birth and country.
• Leicester City Council. The INC ransomware claims responsibility for the attack. March 7, 2024 • [ ransomware, malware, education ] The Leicester City Council is hit with a cyber attack.
• Crypto users in Hong Kong March 7, 2024 • [ social, phishing, finance ] The Hong Kong Securities and Futures Commission blocks fake websites posing as major local cryptocurrency exchanges, impersonating two licensed exchanges in Hong Kong: OSL Digital Securities and Hash Blockchain Limited, also known as HashKey.
• Gryphon Healthcare March 7, 2024 Gryphon Healthcare notifies 393,358 individuals of an incident which involved an unnamed partner that Gryphon provides medical billing services for.
• Duvel Moortgat Brewery March 6, 2024 • [ ransomware, malware, manufacturing ] The Stormous ransomware gang takes credit for an attack on Duvel Moortgat Brewery, a major Belgian beer producer.
• City of Hamilton March 6, 2024 • [ ransomware, malware, government ] The city of Hamilton is still recovering from a ransomware attack that has affected nearly every facet of government functions.
• PetSmart March 6, 2024 • [ hack, brute-force, retail ] Pet retail giant PetSmart warns some customers their passwords were reset due to an ongoing credential stuffing attack attempting to breach accounts.
• Nations Direct Mortgage March 6, 2024 Nations Direct Mortgage say more than 83,000 customers were affected by a late 2023 data breach that leaked Social Security numbers and other sensitive information.
• Paysign March 6, 2024 Financial services firm Paysign says it is investigating reports of a data breach involving consumer information after a threat actor tried to sell a database allegedly belonging to the company containing 1,242,575 records of records.
• Russia March 6, 2024 • [ hack, government ] As Russia prepares for its presidential election, its systems are reportedly being targeted by massive cyberattacks, according to local authorities.
• South Africa Companies and Intellectual Property Commission (CIPC) March 6, 2024 • [ hack, government ] Sensitive data on businesses and individuals in South Africa is at risk after a cyberattack on the Companies and Intellectual Property Commission (CIPC) agency.
• WOOFi March 5, 2024 Decentralized finance platform WOOFi experiences an $8.75 million exploit when an unidentified hacker used flash loans to manipulate the algorithm.
• Canada's FINTRAC March 5, 2024 • [ hack, government ] Canadas financial intelligence agency FINTRAC (Financial Transactions and Reports Analysis Centre of Canada) announces pulling its corporate systems offline due to a cyber incident that struck over the weekend.