Full List

Search

Recent Breaches

• RCH July 14, 2023 • [ leak, manufacturing ] RCH, a provider of software and hardware solutions for points of sale, has its database dumped online.
• Shutterfly July 14, 2023 Shutterfly, an online retail and photography manufacturing platform, is among the latest victims hit by Clop ransomware exploiting the CVE-2023-34362 MOVEit vulnerability.
• American Multi-Cinema (AMC Theatres) July 14, 2023 • [ leak, misconfiguration, retail ] American Multi-Cinema (AMC Theatres) files a notice of data breach after a cyber incident resulted in an unauthorized party being able to access consumers' sensitive information. According to some source the incident stemmed from the exploitation of the MOVEit vulnerability.
• Athene Annuity and Life Company July 14, 2023 Athene Annuity and Life Company files a notice of third-party data breach after learning that a vendor used by Athene, Pension Benefit Information, LLC ("PBI"), experienced a data breach related to the popular file transfer application MOVEit.
• Crowe July 14, 2023 Global accounting and tax advisory firm Crowe confirms to have been hit by the Cl0p MOVEit breach.
• Fairfax Oral & Maxillofacial Surgery (FOMS) July 14, 2023 • [ leak, healthcare ] Fairfax Oral & Maxillofacial Surgery (FOMS) files a notice of data breach after a cyber incident compromised patients' protected health information.
• GuidePoint Security July 14, 2023 Vitality Group files a notice of data breach on behalf of GuidePoint Security after discovering that the MOVEit file transfer software used by Vitality contained a critical vulnerability that allowed an unauthorized party to access certain GuidePoint Security employees' sensitive information.
• Idea Financial (Idea 247) July 14, 2023 Idea Financial (Idea 247) files a notice of data breach after discovering that an unauthorized party accessed a database containing confidential consumer information.
• Park Royal Hospital July 14, 2023 The Pavilion at Health Park dba Park Royal Hospital files a notice of data breach after discovering that confidential patient information was accessed through a compromised employee email account.
• Idaho State Board of Education July 14, 2023 • [ leak, sqlinjection, education ] The Idaho State Board of Education posts a notice of data on its website after learning that two of the Board's vendors, the Teachers Insurance and Annuity Association ("TIAA") and the National Student Clearinghouse ("NSC"), experienced data breaches related to the file-transfer software MOVEit.
• Sunflower Bank July 14, 2023 Sunflower Bank files a notice of data breach after discovering that the MOVEit file transfer program used by the bank, contained a critical vulnerability allowing hackers to access confidential customer information.
• Citta� Nuova July 14, 2023 The Rhysida ransomware gangs hits Citta Nuova, an Italian publishing house.
• Hillsborough County July 14, 2023 Hillsborough County is impacted in the MOVEit CVE-2023-34362 vulnerability, and more than 70,000 residents are affected.
• Teachers Insurance and Annuity Association of America (TIAA) July 14, 2023 Teachers Insurance and Annuity Association of America (TIAA) files a notice of data breach after discovering to have been hit by the MOVEit CVE-2023-34362 vulnerability.
• Citta� Nuova July 14, 2023 • [ ransomware, publishing, data breach ] The Rhysida ransomware gangs hits Citta Nuova, an Italian publishing house.
• Norwegian Refugee Council (NRC) July 13, 2023 • [ hack, government ] The Norwegian Refugee Council (NRC) announces that it recently discovered a cyberattack targeting an online database that stores the personal information of project participants.
• Sun Life Assurance Company of Canada (Sun Life) July 13, 2023 • [ hack, misconfiguration, finance ] Sun Life Assurance Company of Canada (Sun Life) posts a notice on its website revealing to have been hit by the CVE-2023-34362 MOVEit vulnerability.
• Colorado State University July 12, 2023 The Colorado State University confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
• Guarantee Trust Life Insurance Company July 12, 2023 • [ hack, phishing, finance ] Guarantee Trust Life Insurance Company files a notice of data breach after determining that an unauthorized party accessed an employee's email account that contained confidential consumer information.
• Konen & Associates, doing business as Unified Pain Management July 12, 2023 Konen & Associates, doing business as Unified Pain Management notifies about an email account breach involving at least 500 records.