Full List

Search

Recent Breaches

• Mary Kay Corporation July 12, 2023 • [ ransomware, malware, retail ] Mary Kay Corporation is added to the list of the victims of the Clop ransomware gang exploiting the CVE-2023-34362 vulnerability.
• NASCO July 12, 2023 NASCO files a notice of data breach after discovering that the vulnerability within MOVEit resulted in an unauthorized party being able to access certain information in the company's possession.
• Sovos Compliance July 12, 2023 Sovos Compliance files a notice of data breach after discovering that MOVEit, the file transfer software used by Sovos, contained a critical vulnerability allowing an unauthorized party to download confidential consumer data provided to Sovos.
• Town of Cornelius July 12, 2023 • [ ransomware, malware, government ] The Town of Cornelius, North Carolina, is dealing with delayed or unavailable services after a ransomware attack.
• Sigrist, Cheek, Potter & Huyser July 11, 2023 • [ hack, phishing, finance ] Sigrist, Cheek, Potter & Huyser (SCP&H) files a notice of data breach after discovering that an unauthorized party gained access to the companys email system and cloud-based storage site.
• American National Insurance Company July 11, 2023 • [ leak, sqlinjection, finance ] American National Insurance Company confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
• Hamilton College July 11, 2023 • [ hack, sqlinjection, education ] The Hamilton College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
• Kansas Medical Center July 11, 2023 • [ ransomware, leak, malware ] The 8Base ransomware gang claims to have attacked Kansas Medical Center and threaten to publish the data as a leak on July 15.
• Multichain July 11, 2023 • [ financial, finance ] Multichain suffers an additional $103 million loss of crypto assets despite it is not clear if the loss is the result of a cyber attack or a rug pull.
• Panorama Eyecare July 11, 2023 • [ ransomware, leak, healthcare ] Panorama Eyecare is added to LockBit's leak site with a claim that 798 GB of data has been exfiltrated from four of the firm's clients: Eye Center of Northern Colorado, Denver Eye Surgeons, Cheyenne Eye Clinic & Surgery Center; and 2020 Vision Center.
• University of Colorado July 11, 2023 The University of Colorado confirms to have been affected by the MOVEit data breach.
• University of Louisville July 11, 2023 The University of Louisville confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
• Washington State University (WSU) July 11, 2023 Washington State University (WSU) posts a notice on its website explaining that a third-party data breach leaked personally identifiable information belonging to current and prospective students as well as employees. The incident involved two service providers, National Student Clearinghouse (NSC) and the Teachers Insurance and Annuity Association (TIAA).
• Langlade County July 11, 2023 • [ ransomware, malware, government ] Northern Wisconsin's Langlade County is hit with a LockBit 3.0 ransomware attack.
• UofL Health July 11, 2023 • [ hack, malware, healthcare ] UofL Health, an academic health system, confirms that it had been targeted by a cyber attack exploiting the MOVEit CVE-2023-34362 vulnerability, after being listed on Clop's dark web leak site.
• Jones Lang LaSalle (JLL) July 11, 2023 • [ leak, sqlinjection ] Jones Lang LaSalle (JLL) confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
• Majorel July 11, 2023 Deutsche Bank AG confirms that a data breach on one of its service providers has exposed its customers' data in a likely MOVEit Transfer data-theft attack. Other impacted banks include Commerzbank, Postbank, Comdirect, and ING.
• Municipality of Ferrara July 11, 2023 • [ ransomware, malware, government ] The Rhysida ransomware gangs hits the Municipality of Ferrara (Comune di Ferrara)
• Rodeo Finance July 11, 2023 • [ financial, finance ] An attacker steals $1.53 million from Arbitrum-based Rodeo Finance, marking the second cyberattack against the decentralized finance protocol this month.
• Choice Hotel July 11, 2023 Choice Hotel confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability. The breach affected also other companies of the group including Radisson Hotels.