Full List

Search

Recent Breaches

• Socket January 16, 2024 • [ financial, finance ] Blockchain protocol Socket pauses some operations after a threat actor steals $3.3 million.
• Kansas State University January 16, 2024 • [ hack, education ] Kansas State University (K-State) announces it is managing a cybersecurity incident that has disrupted certain network systems.
• Muleshoe water facility January 16, 2024 CyberArmyofRussia_Reborn, a group with ties to the Russian government is suspected of carrying out a cyberattack in the Muleshoe water facility that caused a tank at a Texas water facility to overflow.
• Trello January 16, 2024 In January 2024, data was scraped from Trello and posted for sale on a popular hacking forum. Containing over 15M email addresses, names and usernames, the data was obtained by enumerating a publicly accessible resource using email addresses from previous breach corpuses. Trello advised that no unauthorised access had occurred.
• Loïc Lawson and Anani Sossou January 16, 2024 • [ spyware, surveillance, Pegasus ] Reporters Without Borders (RSF) announces to have found traces of spyware resembling NSO groups Pegasus surveillance tool on the phones of two journalists in Togo (Loc Lawson and Anani Sossou).
• Tura Scandinavia AB January 15, 2024 • [ ransomware, malware ] Tura Scandinavia AB is hit with a LockBit ransomware attack.
• Balticum January 15, 2024 Multiple organizations in Lithuania, including Compensa Vienna Insurance Group, If Insurance, Lithuanian Roads Association, AD REM, INIT, and Balticum are allegedly taken down by the pro-Russia hacktivists of the NoName057(16) group.
• Multiple organizations in Bahrain January 15, 2024 • [ hack, technology ] The Anonymous Collective takes down several organizations in Bahrain, including prominent media outlets like Akhbar al-Khaleej, Al-Ayam, Gulf Daily News, and Al-Bilad, in retaliation for the countrys support for the US and UK strikes on Yemen.
• Maisons de l’Avenir January 15, 2024 • [ ransomware, leak, malware ] Maisons de lAvenir is added to the LockBit 3.0 ransomware leak site.
• Shinwa Co January 15, 2024 • [ ransomware, leak, malware ] Shinwa Co is added to the LockBit 3.0 ransomware leak site.
• Government Employees Insurance Company (GEICO) January 15, 2024 • [ leak, finance ] A threat actor identified as wangfei19860902055 advertises the sale of a database related to Government Employees Insurance Company (GEICO) on a popular dark web forum.
• London Internet Exchange (LINX) January 15, 2024 Anonymous Sudan, a Russia-affiliated hacktivist group, claims responsibility for a cyberattack on the London Internet Exchange (LINX) in response to Britains support to Israel and the launching of air attacks on Yemen.
• Khaadi January 15, 2024 • [ hack, malware, retail ] Khaadi, a clothing retail site based in Pakistan and the United Arab Emirates is hit with a magecart attack.
• South Korean construction trade organization January 15, 2024 The South Korea's National Cyber Security Center (NCSC) warns that state-backed threat actors DPRK hijacked flaws in a VPN's software update to deploy malware and breach networks. In the first case they compromised the website of a South Korean construction trade organization to disseminate malware to visitors.
• Construction and machinery companies in South Korea January 15, 2024 The South Korea's National Cyber Security Center (NCSC) warns that state-backed threat actors DPRK hijacked flaws in a VPN's software update to deploy malware and breach networks. In the second case they exploited vulnerabilities in domestic security software (VPN and server security) to replace update files with malware, distributing remote control malware named "DoraRAT" to construction and machinery companies.
• Organizations in Myanmar January 15, 2024 • [ espionage, backdoor, malware ] Mustang Panda leveraged mavinject.exe and DLL side-loading to inject a ToneShell family backdoor into processes on targeted Myanmar organisation endpoints to enable espionage and persistent access.
• Maisons de l’Avenir January 15, 2024 • [ ransomware, data leak ] Maisons de lAvenir is added to the LockBit 3.0 ransomware leak site.
• Calvià City Council in Majorca January 13, 2024 • [ ransomware, malware, government ] The Calvi City Council in Majorca announces to be targeted by a ransomware attack, which impacted municipal services. The attackers demand a 10M (approximately $11M) ransom.
• Horne January 13, 2024 • [ hack, finance ] Horne files a notice of data breach resulting in an unauthorized party being able to access consumers sensitive information,
• Calvià City Council in Majorca January 13, 2024 • [ ransomware, cyberattack, extortion ] The Calvi City Council in Majorca announces to be targeted by a ransomware attack, which impacted municipal services. The attackers demand a 10M (approximately $11M) ransom.