Portend Breaches

Landmark Admin June 27, 2024 • [ leak, finance ] Life insurance company Landmark Admin sends notifications to an unknown number of individuals about a data breach impacting personal, medical, and insurance information.

Teamviewer June 27, 2024 TeamViewer, the company that makes widely used remote access tools for companies, confirms an ongoing cyberattack on its corporate network carried out by the Russian state-sponsored actor APT29

Telecommunication providers in Crimea June 27, 2024 • [ hack, ddos, technology ] Local authorities in Crimea warn of internet disruptions from distributed denial-of-service (DDoS) attacks targeting telecommunication providers.

University Hospital Centre in Zagreb, a.k.a. KBC Zagreb June 27, 2024 • [ ransomware, malware, healthcare ] The LockBit ransomware gang claims responsibility for a cyberattack on Croatias largest hospital, which forces it to shut down IT systems for a day.

BudTrader June 27, 2024 • [ hack, misconfiguration ] In July 2024, a data breach of the now defunct cannabis social platform BudTrader was posted for sale on a hacking forum. Dating back to the previous month, the breach of the website exposed 2.7M email addresses, usernames and WordPress password hashes.

Evolve Bank & Trust June 26, 2024 Evolve Bank & Trust confirms that hackers stole customer information and posted it on the dark web. A LockBit ransomware affiliated is suspected of the attack. Evolve customers like Wise, Affirm, and Mercury are also impacted by the breach.

Palomar Health Medical Group June 26, 2024 • [ ransomware, malware, healthcare ] Palomar Health Medical Groups (PHMG) phones and computer systems are still down after suspicious activities nearly two months ago.

The Ambulatory Surgery Center of Westchester June 26, 2024 • [ social, phishing, healthcare ] The Mount Kisco Surgery Center LLC d/b/a The Ambulatory Surgery Center of Westchester ("ASCW") discloses a security breach after the compromise of an employee's email.

Ticketek Entertainment Group June 26, 2024 The threat actor ShinyHunters claims on a hacking forum the theft of information pertaining to 30 millions of Ticketek Entertainment Group (TEG) users. The breach is likely due to the SnowFlake campaign.

Alex Lab June 25, 2024 Bitcoin decentralized finance protocol Alex Lab says that a $4 million exploit it suffered last month is likely linked to North Korea Lazarus Group.

South Africa’s National Health Laboratory Service June 25, 2024 • [ ransomware, malware, healthcare ] South Africas National Health Laboratory Service (NHLS) confirms to be dealing with a ransomware attack.

Large business-to-business IT service providers in Southern Europe June 25, 2024 • [ espionage, technology ] Researchers from Sentinel One and Tinext Cyber reveal the details of Operation Digital Eye, a suspected China-nexus cyber espionage group attributed to an attacks targeting large business-to-business IT service providers in Southern Europe.

Indonesia's Temporary National Data Center June 24, 2024 • [ ransomware, malware, government ] The Indonesian National Cyber and Encryption Agency (BSSN) reveals that the Brain Cipher ransomware disrupted the Temporary National Data Center server, affecting the operations of 210 government institutions, including immigration services at Soekarno-Hatta International Airport.

Neiman Marcus June 24, 2024 • [ hack, malware, retail ] High-end department store Neiman Marcus discloses a data breach, shortly before the threat actor 'Sp1d3r' offered to sell information belonging to millions of the companys customers. The hack impacted 64,000 users and is likely part of the massive SnowFlake campaign.

SpyX June 24, 2024 • [ leak, malware, technology ] In June 2024, spyware maker SpyX suffered a data breach that exposed almost 2M unique email addresses. The breach also exposed IP addresses, countries of residence, device information and 6-digit PINs in the password field. Further, a collection of iCloud credentials likely used to monitor targets directly via the cloud were also in the breach and contained the target's email address and plain text Apple password.

CoinStats June 23, 2024 • [ hack, finance ] CoinStats reveals to have suffered a massive security breach that compromised 1,590 cryptocurrency wallets, draining over $2 million in virtual assets, with the attack suspected to have been carried out by North Korean threat actors.

Jollibee Group June 23, 2024 • [ leak, retail ] The Jollibee Group begins investigates a cybersecurity incident that may have compromised the records of millions of customers.

BtcTurk June 22, 2024 Turkeys biggest cryptocurrency market BtcTurk says that their exchange had been hacked, with the assets stolen possibly amounting to nearly 51 million euros.

Zacks (2024) June 22, 2024 • [ leak, finance ] In June 2024, the investment research company Zacks was allegedly breached, and data was later published to a popular hacking forum. This comes after a separate Zacks data breach confirmed by the organisation in 2023 with the subsequent breach disclosing millions of additional records representing a superset of data from the first incident. The 2024 breach included 12M unique email addresses along with IP and physical addresses, names, usernames, phone numbers and unsalted SHA-256 password hashes. Zacks did not respond to multiple attempts to contact them about the incident.

Japan Aerospace Exploration Agency (JAXA) June 21, 2024 • [ hack, government ] The Japanese space agency JAXA has been hit by a series of cyberattacks since it reported a cyber incident during November 2023.

Recent Breaches