Portend Breaches

Plains Capital Bank July 7, 2023 • [ hack, sqlinjection, finance ] Plains Capital Bank confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.

Utah Tech University July 7, 2023 The Utah Tech University confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.

Webster University July 7, 2023 • [ hack, sqlinjection, education ] The Webster University confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.

First Merchants Bank (FMB) July 6, 2023 • [ hack, finance ] First Merchants Bank (FMB) confirms to have been affected by the MOVEit data breach.

Multichain July 6, 2023 • [ hack, finance ] The crypto platform Multichain suspends its services as it investigates claims that more than $125 million in cryptocurrency was stolen.

Cambridgeshire County Council July 6, 2023 • [ hack, sqlinjection, government ] The Cambridgeshire County Council confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.

Proskauer Rose July 6, 2023 • [ hack, malware, education ] The law firms Proskauer Rose is listed by the Cl0p gang among the victims of a data breach occurred exploiting the MOVEit vulnerability.

Fédération Francaise de Rugby July 6, 2023 In June 2023, the Fdration Francaise de Rugby (French Rugby Federation) suffered a data breach and attempted ransom. The breach exposed 282k unique email addresses along with names, dates of birth and phone numbers. The Federation subsequently published a disclosure notice and stated that the attack primarily affected email servers. The data was provided to HIBP by a source who requested it be attributed to "atix".

Facebook page of the State Statistics Service of Ukraine July 5, 2023 The Facebook page of the State Statistics Service of Ukraine runs a disinformation campaign for a short time after Russian hacktivists gain administrator access to the page.

Rodeo Finance July 5, 2023 • [ financial, finance ] Rodeo Finance suffers a loss of $50,000 worth from the platform.

RZD July 5, 2023 • [ hack, ddos, government ] The Russian state-owned railway company RZD is taken down by a DDoS attack from the hacktivists of the Ukrainian IT Army.

ZooTampa July 5, 2023 ZooTampa, the Tampa Bay Zoo confirms to have been hit by a BlackSuit (a Royal spinoff) ransomware attack.

Port of Nagoya July 4, 2023 • [ ransomware, government ] The Port of Nagoya, the largest and busiest port in Japan, is targeted in a ransomware attack that impacts the operation of container terminals.

Runner July 4, 2023 Runner.it, an Italian distributor of IT technologies, has its database dumped online.

Acque Veronesi July 4, 2023 • [ hack ] Acque Veronesi, a local water utility in Italy discloses to have suffered a cyber attack.

ConsensioHealth July 3, 2023 • [ ransomware, malware, healthcare ] ConsensioHealth files a notice of data breach after discovering that portions of its computer network were encrypted as a result of a cyberattack.

North Mississippi Health Services July 3, 2023 • [ social, phishing, healthcare ] North Mississippi Health Services reveals that they discovered unauthorized access through an employee's email account after a phishing email was unintentionally opened.

Blowtherm July 3, 2023 • [ ransomware, malware, manufacturing ] The LockBit ransomware gang claims to have hacked Blowtherm, a manufacturer of paint booths and finishing equipment for the automotive.

University of Illinois July 3, 2023 • [ leak, sqlinjection, education ] The University of Illinois confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.

Belarusian State University (BSU) July 3, 2023 The Belarusian hacker group known as the Cyber Partisans claims to have attacked the country's largest state-owned university Belarusian State University (BSU), accessing 3 terabytes of data from the university's system, and also encrypting and wiping some servers.

Recent Breaches