Full List

Search

Recent Breaches

• Granules India May 31, 2023 • [ ransomware, malware, manufacturing ] The Russia-linked ransomware group LockBit claims responsibility for a cyberattack on Indian pharmaceutical giant Granules India, and publishes portions of the data it allegedly stole.
• Greater Rochester Independent Practice Association May 31, 2023 Greater Rochester Independent Practice Association (GRIPA) files a notice of data breach after discovering that the software vulnerability within MOVEit enabled hackers to access confidential consumer information within the company's possession.
• GSC Game World May 31, 2023 Leaked S.T.A.L.K.E.R 2 dev builds surface online, leaving users to wonder if it was somehow related to the GSC Game World security incident a couple of months ago or if it's another issue entirely.
• Illinois Department of Innovation & Technology (DoIT) May 31, 2023 • [ hack, sqlinjection, government ] The Illinois Department of Innovation & Technology (DoIT) reveals to be investigating the impact of a data breach related to MOVEit CVE-2023-34362 vulnerability.
• Paramedic Billing Services May 31, 2023 • [ hack, healthcare ] Paramedic Billing Services announces that it fell victim to a cyberattack in late May 2023.
• 1st Source Bank May 31, 2023 1st Source Bank confirms that the protected health information of 1,477 individuals was stolen in May 2023 when hackers exploited the zero day vulnerability in Progress Software's MOVEit Transfer solution.
• Prudential Insurance Company of America May 31, 2023 Prudential Insurance Company of America files a notice of data breach after discovering that one of the company's vendors (PBI) experienced a data breach related to the file transfer program MOVEit.
• Tampa General Hospital May 31, 2023 • [ ransomware, malware, healthcare ] Tampa General Hospital discloses that the sensitive data of 1.2 million was stolen in a failed ransomware attack.
• VALIC Retirement Services Company May 31, 2023 • [ leak, finance ] VALIC Retirement Services Company (VRSCO, VALIC) files a notice of data breach after discovering that one of the company's vendors experienced a MOVEit data breach resulting in confidential client information being leaked.
• West Texas Gas May 31, 2023 • [ hack, energy ] West Texas Gas (WTG) filed a notice of data breach after discovering that an unauthorized party gained access to their systems, copied certain files, and deleted other files.
• Undisclosed energy company in the U.S. May 31, 2023 • [ social, phishing, energy ] Researchers from Cofense discover a phishing campaign was observed targeting a notable energy company in the US, employing QR codes to slip malicious emails into inboxes and bypass security.
• UnitedHealthcare Student Resources May 31, 2023 UnitedHealthcare Student Resources (Student Resources) files a notice of data breach after discovering that an unauthorized party was able to access confidential information stored on the organization's MOVEit server.
• Quorum Federal Credit May 31, 2023 Quorum Federal Credit Union files a notice of data breach after discovering that a vulnerability within the file transfer software MOVEit resulted in an unauthorized party being able to access confidential customer data.
• JD Group May 31, 2023 In May 2023, the South African retailer JD Group announced a data breach affecting a number of their online assets including Bradlows, Everyshop, HiFi Corp, Incredible (Connection), Rochester, Russells, and Sleepmasters. The breach exposed over 520k unique customer records including names, email and physical addresses, phone numbers and South African ID numbers.
• Belgian State Security Service (VSSE) May 31, 2023 • [ data leak, nation-state attack, vulnerability exploit ] China-linked threat actors compromised VSSEs Barracuda Email Security Gateway between February 2021 and May 2023, exfiltrating around 10% of all staff email communications and employee personal data. No encryption or operational disruption was reported.
• Hillman Group May 30, 2023 • [ hack, manufacturing ] The Hillman Group files a notice of data breach after discovering that an unauthorized party gained access to the company's computer network.
• MHMR Authority of Brazos Valley May 30, 2023 • [ ransomware, malware, healthcare ] The MHMR Authority of Brazos Valley reveals to have suffered a Hive ransomware attack.
• Global Atlantic Financial Group May 30, 2023 • [ leak, sqlinjection, finance ] Global Atlantic Financial Group files a notice of data breach after discovering the MOVEit-related data breach at Pension Benefit Information.
• Greece's online examination platform May 30, 2023 • [ hack, education ] End-of-year high school exams in Greece are disrupted by "one of the most extensive cyberattacks in the country's history," according to the country's Education Ministry.
• Unknown Organization May 30, 2023 • [ leak, retail ] A user dubbed fibonacci leaks the entire database (364,000 records) of Italia Militare, an e-commerce portal for military goods.