Full List

Search

Recent Breaches

• Skanlog April 23, 2024 • [ ransomware, logistics, supply chain disruption ] Skanlog, the Swedish logistics company that works with Swedens alcohol retail monopoly Systembolagethas, is hit with a ransomware attacks and prompts warnings from the countrys sole liquor retailer that its top shelves in stores around the country may be empty by the end of the week.
• Tipton Wastewater Treatment Plant April 20, 2024 • [ hack ] The Cyber Army of Russia claims responsibility for a cyber attack to the Tipton Wastewater Treatment Plant. An investigation by Mandiant claims that this group may be linked operationally to APT44 GRU Sandworm
• Volkswagen April 20, 2024 • [ espionage, manufacturing ] Threat actors associated with the Chinese government are believed to have hacked into Volkswagen systems in an effort to steal valuable data between 2011 and 2014.
• Chivo April 20, 2024 The threat group CiberInteligenciaSV releases what it says is sensitive information linked to El Salvador's state-operated bitcoin wallet Chivo, releasing source code on the criminal forum BreachForums.
• Ukrainian armed forces April 19, 2024 The Computer Emergency Team of Ukraine (CERT-UA) warns that threat actors from the group UAC-0184 are increasingly trying to plant data-stealing malware on messaging apps used by the Ukrainian armed forces.
• Hedgey Finance April 19, 2024 • [ financial, finance ] Token infrastructure platform Hedgey Finance undergoes two simultaneous exploits that resulted in a combined loss of $44.7 million
• Union Hospital April 18, 2024 • [ ransomware, malware, healthcare ] The Union Hospital in Hong Kong is hit with an alleged LockBit ransomware attack.
• Government of British Columbia April 18, 2024 • [ hack, government ] The Government of British Columbia is investigating multiple "cybersecurity incidents" that have impacted the Canadian province's government networks.
• Synlab Italia April 18, 2024 • [ ransomware, malware, healthcare ] Synlab Italia suspends all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline. The BlackBasta ransomware gang claims responsibility for the attack.
• Summit Pathology and Summit Pathology Laboratories April 18, 2024 • [ ransomware, healthcare ] Summit Pathology and Summit Pathology Laboratories (Summit) in Colorado notify of a breach affecting 1,813,538 patients. The Medusa ransomware gang is allegedly responsible for the breach.
• Sport 2000 April 18, 2024 • [ leak, retail ] In April 2024, the French sporting equipment manufacturer Sport 2000 announced it had suffered a data breach. The data was subsequently put up for sale on a popular hacking forum and included 4.4M rows with 3.2M unique email addresses alongside names, physical addresses, phone numbers, dates of birth and purchases made by store name. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
• Mobile Guardian April 17, 2024 The names and e-mail addresses of parents and teachers of 127 primary and secondary schools are leaked after Mobile Guardian, a mobile platform on students personal learning devices is hacked.
• Grodno Azot April 17, 2024 • [ hack, manufacturing ] Belarusian politically motivated hacktivists from the Belarusian Cyber-Partisans group claim to have attacked the countrys largest state-run manufacturer of fertilizers, Grodno Azot, for its alleged involvement in political repression, sanctions evasion, and human rights violations.
• New York Bill Drafting Commission April 17, 2024 • [ hack, malware, government ] The New York Bill Drafting Commission is taken down by a malware attack.
• T2 April 17, 2024 In April 2024, 95k records from the T2 tea store were posted to a popular hacking forum. Data included email and physical addresses, names, phone numbers, dates of birth, purchases and passwords stored as scrypt hashes.
• Grodno Azot April 17, 2024 • [ hacktivism, political repression, sanctions evasion ] Belarusian politically motivated hacktivists from the Belarusian Cyber-Partisans group claim to have attacked the countrys largest state-run manufacturer of fertilizers, Grodno Azot, for its alleged involvement in political repression, sanctions evasion, and human rights violations.
• Hospital Simone Veil in Cannes (CHC-SV) April 16, 2024 • [ ransomware, malware, healthcare ] The Hospital Simone Veil in Cannes (CHC-SV) announces that it was targeted by a cyberattack, severely impacting its operations and forcing staff to go back to pen and paper. The LockBit ransomware operation claims responsibility for the attack.
• Argentina's driver licenses April 16, 2024 • [ hack, leak, government ] A threat actor allegedly hacks a database holding 5.7M Argentinas drivers licenses, requesting a payment of $3,000 USD for whoever wishes to purchase the images of Argentine licenses.
• Albatross April 15, 2024 • [ hack, leak, manufacturing ] Ukrainian hackers from Cyber Resistance claim to have breached the Russian drone developer Albatross, leaking 100 gigabytes of data, including internal documentation, technical data and drawings of various types of unmanned aerial vehicles.
• Northeast Ohio Neighborhood Health (NEON) April 15, 2024 • [ ransomware, malware, healthcare ] The Medusa ransomware group claims responsibility for a cyberattack on the servers of Northeast Ohio Neighborhood Health (NEON), a company providing healthcare services, and the exfiltration of nearly 51GB of data.