Full List

Search

Recent Breaches

• Parathon August 2, 2023 • [ ransomware, malware, technology ] The Akira ransomware group adds U.S.-based software company Parathon to its victim list. The hackers claimed to have 560 GB of data of employee data and other information, exfiltrated after the Parathon cyber attack.
• MagicDuel August 2, 2023 • [ hack, technology ] In August 2023, the MagicDuel Adventure website suffered a data breach that exposed 138k user records. The data included player names, email and IP addresses and bcrypt password hashes.
• Hawaii's Gemini North Observatory August 1, 2023 The National Science Foundation's National Optical-Infrared Astronomy Research Laboratory (NOIRLab) detects a cyber incident in its computer systems, forcing the suspension of astronomical observations at Gemini North in Hawai'i.
• LeetSwap August 1, 2023 • [ hack, misconfiguration, finance ] LeetSwap halts transactions, after an attacker exploits a smart contract function to inflate the price of $630,000 worth of ETH tokens on the platform before draining them
• Italian business newspaper August 1, 2023 • [ hack, ddos ] The pro-Russian hacktivist group NoName057(16) claims responsibility for multiple DDoS attacks against the websites of at least five banks, including Intesa Sanpaolo, the largest bank in Italy, and the websites of an Italian water supply company, a national business newspaper, and a public transport website.
• Lumico Life Insurance Company August 1, 2023 • [ leak, finance ] Lumico Life Insurance Company files a notice of data breach after discovering that a MOVEit data breach at Pension Benefits Information.
• Hot Topic August 1, 2023 • [ hack, retail ] American apparel retailer Hot Topic notifies customers about multiple cyberattacks between February 7 and June 21 that resulted in exposing sensitive information to hackers.
• London Metal Exchange (LME) August 1, 2023 • [ hack, finance ] The pro-Russian group Killnet along with other hacker groups claims to have targeted the London Metal Exchange (LME) with a cyber attack. The London Metal Exchange cyber attack has not been confirmed by the organization.
• Valley Mountain Regional Center August 1, 2023 • [ leak, healthcare ] Valley Mountain Regional Center discloses a breach.
• Swedish SMS service August 1, 2023 The Swedens domestic intelligence (Skerhetspolisen - Swedish Security Service) announces that threat actors working for Irans Islamic Revolutionary Guards Corp were behind the hack targeting a Swedish SMS service, intended to paint an image of Sweden as an Islamophobic country.
• West Oaks School July 31, 2023 • [ ransomware, malware, education ] The West Oaks School is hit with a LockBit ransomware attack.
• Sirius Federal July 31, 2023 • [ hack, technology ] Sirius Federal files a notice of data breach after discovering that files stored on the companys IT network were subject to unauthorized access.
• McAlester Regional Health Center July 31, 2023 • [ ransomware, malware, healthcare ] The McAlester Regional Health Center is targeted by the Karakurt ransomware group claiming to have stolen over 126GB of data from the facility, including a swath of DNA patient records to be auctioned off to the highest bidder.
• K&K Glass July 31, 2023 • [ hack, automotive ] K&K Glass, part of Auto Glass Now, files a notice of data breach after discovering that an unauthorized party was able to access the company's IT network.
• Bluegrass Care Navigators July 31, 2023 Hospice of the Bluegrass, doing business as Bluegrass Care Navigators, discover that an unauthorized third party has gained access to the email account of one of its employees.
• Tecnova Group July 31, 2023 • [ leak, technology ] Tecnova Group suffers a cyber attack leading to the exfiltration of 7GB of data, of which 800MB are leaked.
• Kenya's eCitizen Portal July 31, 2023 • [ hack, ddos, government ] Kenya's eCitizen Portal suffers a huge DDoS attack that affects services on the key government online platform eCitizen for almost a week.
• Offtec July 31, 2023 • [ espionage, malware, technology ] Researchers from Deep Instinct discover a new campaign from the "MuddyWater" group targeting Offtec, a Jordanian conglomerate using MuddyC2Go, a new C2 Framework.
• BAZAN Group July 30, 2023 Website of Israel's largest oil refinery operator, BAZAN Group is inaccessible from most parts of the world as threat actors claim to have hacked the Group's cyber systems.
• MetronomeDAO July 29, 2023 Decentralized Finance (DeFi) platform Alchemix is also victim of a theft of crypto assets exploiting the vulnerability in the Vyper language.