Full List

Search

Recent Breaches

• Hawaii Community College June 20, 2023 • [ ransomware, malware, education ] Hawaii Community College discloses to be dealing with a ransomware attack.
• RadÃÆ'Ã'  June 20, 2023 A database with 25,000 records of the Italian jewelry firm Rad'', is published on Breach Forums.
• Undisclosed Ukrainian government entities June 20, 2023 A joint investigation conducted by Ukraine's Computer Emergency Response Team (CERT-UA) and Recorded Future reveal that the APT28 group, linked to Russia's General Staff Main Intelligence Directorate (GRU), has breached Roundcube email servers belonging to multiple Ukrainian organizations, including government entities, exploiting the vulnerabilities CVE-2020-35730, CVE-2020-12641, and CVE-2021-44026.
• Lamont Hanley & Associates June 20, 2023 • [ leak, misconfiguration, healthcare ] Almost 2,800 patients at Catholic Medical Center may have had their files containing personal and health information exposed in a third-party "data security incident" occurred to Lamont Hanley & Associates.
• Dymocks June 20, 2023 • [ leak, retail ] In September 2023, the Australian book retailer Dymocks announced a data breach. The data dated back to June 2023 and contained 1.2M records with 836k unique email addresses. The breach also exposed names, dates of birth, genders, phone numbers and physical addresses.
• RadÃÆ'Ã'ÂÂÂ June 20, 2023 • [ data leak, Breach Forums, database ] A database with 25,000 records of the Italian jewelry firm Rad'', is published on Breach Forums.
• BreachForums June 19, 2023 • [ leak, technology ] The reincarnated BreachForums site just has its user database stolen and published.
• European Investment Bank (EIB) June 19, 2023 • [ hack, ddos, finance ] The pro-Russian Killnet hacktivist group claims to have taken down the network infrastructure of the European Investment Bank - EIB.
• Fortra LLC June 19, 2023 Approximately 16,000 members of Blue Cross Vermont health plans have their protected health information compromised in a January 2023 cyberattack carried out exploiting the CVE-2023-0669 zero-day vulnerability in Fortra's GoAnywhere MFT file transfer solution and accessed and stole sensitive data such as names, birth dates, addresses, medical information, and insurance information. Around 5% of the affected individuals also had their financial information stolen.
• Umpqua Bank June 19, 2023 • [ hack, malware, finance ] Umpqua Bank confirms that it was impacted by the massive cyberattack targeting the MOVEit file transfer software.
• Colorado Department of Higher Education (CDHE) June 19, 2023 • [ ransomware, malware, education ] The Colorado Department of Higher Education (CDHE) discloses a massive data breach impacting students, past students, and teachers after suffering a ransomware attack in June.
• Informatica June 19, 2023 Software development firm Informatica reports that the Clop ransomware gang campaign obtained some files exploiting the MOVEit CVE-2023-34362 Vulnerability.
• Central Bank of Malta June 18, 2023 • [ hack, ddos, finance ] The collective Turk Hack Team takes down the website of the Central Bank of Malta
• Undisclosed Property Manager June 18, 2023 • [ hack, malware, healthcare ] Australia's largest private health insurer Medibank Private discloses that a file containing names and contact details of staff members had been compromised after its property manager faced a cybersecurity breach due to the exploitation of the MOVEit CVE-2023-34362 vulnerability.
• U.S. Office of Personnel Management June 17, 2023 The U.S. Office of Personnel Management confirms to have suffered a cyber attack exploiting the MOVEit CVE-2023-34362 vulnerability.
• BreachForums Clone June 17, 2023 • [ leak, misconfiguration, technology ] In June 2023, a clone of the previously shuttered popular hacking forum "BreachForums" suffered a data breach that exposed over 4k records. The breach was due to an exposed backup of the MyBB database which included email and IP addresses, usernames and Argon2 password hashes.
• Honeywell International June 16, 2023 Honeywell International posts a notice on its website describing a data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
• Milliman Solutions June 16, 2023 Milliman Solutions files a notice of data breach after discovering that one of the company's vendors, Pension Benefit Information, experienced a data security incident involving the file sharing application MOVEit.
• Nuance June 16, 2023 • [ leak, sqlinjection, technology ] Software firm Nuance joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
• MyShopCasa June 16, 2023 • [ leak, retail ] MyShopCasa, an Italian e-commerce site has its database leaked.