Full List

Search

Recent Breaches

• At least 24 Cambodian government organizations October 31, 2023 Researchers from Palo Alto Networks reveal that two prominent Chinese government hacking groups are targeting at least 24 Cambodian government organizations through cloud backup services.
• Cryptocurrency exchanges, venture capital firms and banks October 31, 2023 Researchers from Jamf discover a new campaign by the North Korean-backed BlueNoroff threat group targeting Apple customers with a new macOS malware tracked as ObjCShellz that can open remote shells on compromised devices.
• Marketing professionals in India October 31, 2023 Researchers from Kaspersky reveal that the Vietnamese threat actors behind the Ducktail stealer malware have been linked to a new campaign that ran targeting marketing professionals in India with an aim to hijack Facebook business accounts.
• Organizations in the transportation, logistics and technology sectors in Israel October 31, 2023 • [ espionage, malware, technology ] Researchers from Crowdstrike reveal the details of a new campaign from Imperial Kitten targeting transportation, logistics, and technology firms in Israel using a novel malware family.
• South Korean Officials and Journalists October 31, 2023 • [ financial, phishing, finance ] The North Korean threat actors from Kimsuky are accused of impersonating South Korean officials and journalists in a plot to steal cryptocurrency for the North Korean regime.
• Bitfinex October 31, 2023 • [ social, phishing, finance ] Bitfinex announces to have resolved a minor information security incident after a small portion of the customer support boards was accessed by an individual or group, through the phishing of a customer support agent.
• River Valley School October 31, 2023 The River Valley School suffers a wire fraud incident, when an outside network of one of the district's vendors is breached and used to make a fraudulent wire transfer of $736,126.91.
• Two organizations in Israel October 31, 2023 • [ espionage ] Researchers from Deep Instinct discover a new campaign from the "MuddyWater" group targeting two Israeli targets.
• Manchester Airport October 30, 2023 • [ hack, ddos, government ] The Russian group UserSec claims responsibility for taking down the Manchester Airport website.
• Manchester Airport October 30, 2023 • [ hack, ddos, government ] The Russian group UserSec claims responsibility for taking down the Gatwick Airport website.
• Quertaro Intercontinental Airport October 30, 2023 • [ ransomware, malware ] The Quertaro Intercontinental Airport confirms reports that it had been attacked. The LockBit ransomware gang claims responsibility for the attack.
• Sadwestfalen IT October 30, 2023 • [ ransomware, malware, government ] A threat actor encrypts the servers of the local municipal service provider Sadwestfalen IT. To prevent the malware from spreading, the company restricts access to its infrastructure for over 70 municipalities, primarily in the western German state of North Rhine-Westphalia.
• U.S. Department of Defense October 30, 2023 The email addresses of about 632,000 employees from the Justice and Defense departments were accessed in the massive MOVEit hack affecting the Office of Personnel Management.
• Ace Hardware October 30, 2023 • [ hack, retail ] Ace Hardware confirms that a cyberattack is preventing local stores and customers from placing orders as the company works to restore 196 servers.
• National Payment Card System (NSPK) October 30, 2023 • [ hack, finance ] Activists from the DumpForums group and the Ukrainian Cyber Alliance say they defaced a website of the government-run National Payment Card System (NSPK) and reportedly gained access to the internal systems of the consumer payment network Mir ("world" in Russian), a homegrown alternative to brands like Visa and Mastercard, is operated by the NSPK.
• Dallas County October 30, 2023 • [ ransomware, malware, government ] Dallas County experiences a cybersecurity incident that affected parts of its network. The PLAY ransomware gang claims responsibility for the attack.
• Milford Management Corporation October 30, 2023 • [ hack ] Milford Management Corporation files a notice of data breach after discovering that an unauthorized party was able to gain access to the company's computer system.
• Fidelity Investments Life Insurance October 29, 2023 Fidelity Investments Life Insurance informs roughly 28,000 individuals that their personal information was compromised in a data breach at third-party services provider Infosys McCamish System (IMS).
• Shin Bet veterans' association (Shoval) October 29, 2023 • [ hack, government ] An unknown entity breaches the website of the Shin Bet veterans' association, Shoval, and may have stolen the details of the intelligence agency's former employees.
• British Library October 28, 2023 • [ hack, education ] The British Library faces a major outage that impacts the website and many of its services following a cyber attack.