Full List

Search

Recent Breaches

• Barrick Gold May 31, 2023 Barrick Gold files a notice of data breach after discovering that attackers exploited the vulnerability in the MOVEit secure file-transfer software used by the company.
• Financial Institution Service May 31, 2023 Financial Institution Service files a notice of data breach after discovering that the vulnerability in the file-transfer application MOVEit allowed attackers to access the personal information of more than 750,000 people.
• Indiana Family and Social Services Administration May 31, 2023 • [ leak, sqlinjection, government ] The Indiana Family and Social Services Administration (FSSA) posts a notice announcing that the protected health information of an estimated 212,193 Indiana Medicaid members was impacted by the MOVEit data breach affecting CareSource.
• Kennedy Krieger Institute May 31, 2023 • [ leak, misconfiguration, healthcare ] The Johns Hopkins University and the Johns Hopkins Health System Corporation (collectively "Johns Hopkins'') file a notice of data breach on behalf of the Kennedy Krieger Institute after learning that a software vulnerability resulted in confidential consumer information being leaked.
• Non-profit organization(s) in Saudi Arabia May 31, 2023 • [ espionage, malware, healthcare ] Researchers from Cisco Talos disclose a stealthy cyberespionage campaign that targeted a non-profit organization in Saudi Arabia with a backdoor named Zardoor, and remained undetected for two years.
• Centers for Medicare & Medicaid Services May 31, 2023 • [ leak, sqlinjection, healthcare ] The Centers for Medicare & Medicaid Services (CMS) notified 612,000 Medicare beneficiaries of a data breach stemming from a vulnerability in Progress Software's MOVEit Transfer software.
• Medical College of Wisconsin May 31, 2023 The Medical College of Wisconsin (MCW) confirms that the protected health information of 240,667 individuals was stolen by the Clop hacking group, which exploited the zero day vulnerability in Progress Software's MOVEit Transfer.
• BORN Ontario May 31, 2023 • [ hack, sqlinjection, government ] BORN Ontario (Better Outcomes Registry & Network) reveals to have been hit by a data breach related to MOVEit CVE-2023-34362 vulnerability.
• Casepoint May 31, 2023 • [ ransomware, malware, technology ] Casepoint says it's investigating a potential cybersecurity incident after the ransomware group BlackCat claims to have compromised the legal technology platform to steal terabytes of sensitive data.
• CCleaner May 31, 2023 • [ leak, technology ] The maker of the popular optimization app CCleaner confirms that threat actors stole a trove of personal information about its paid customers following a MOVEit data breach in May.
• Granules India May 31, 2023 • [ ransomware, malware, manufacturing ] The Russia-linked ransomware group LockBit claims responsibility for a cyberattack on Indian pharmaceutical giant Granules India, and publishes portions of the data it allegedly stole.
• Greater Rochester Independent Practice Association May 31, 2023 Greater Rochester Independent Practice Association (GRIPA) files a notice of data breach after discovering that the software vulnerability within MOVEit enabled hackers to access confidential consumer information within the company's possession.
• GSC Game World May 31, 2023 Leaked S.T.A.L.K.E.R 2 dev builds surface online, leaving users to wonder if it was somehow related to the GSC Game World security incident a couple of months ago or if it's another issue entirely.
• Illinois Department of Innovation & Technology (DoIT) May 31, 2023 • [ hack, sqlinjection, government ] The Illinois Department of Innovation & Technology (DoIT) reveals to be investigating the impact of a data breach related to MOVEit CVE-2023-34362 vulnerability.
• Paramedic Billing Services May 31, 2023 • [ hack, healthcare ] Paramedic Billing Services announces that it fell victim to a cyberattack in late May 2023.
• 1st Source Bank May 31, 2023 1st Source Bank confirms that the protected health information of 1,477 individuals was stolen in May 2023 when hackers exploited the zero day vulnerability in Progress Software's MOVEit Transfer solution.
• Prudential Insurance Company of America May 31, 2023 Prudential Insurance Company of America files a notice of data breach after discovering that one of the company's vendors (PBI) experienced a data breach related to the file transfer program MOVEit.
• Tampa General Hospital May 31, 2023 • [ ransomware, malware, healthcare ] Tampa General Hospital discloses that the sensitive data of 1.2 million was stolen in a failed ransomware attack.
• VALIC Retirement Services Company May 31, 2023 • [ leak, finance ] VALIC Retirement Services Company (VRSCO, VALIC) files a notice of data breach after discovering that one of the company's vendors experienced a MOVEit data breach resulting in confidential client information being leaked.
• West Texas Gas May 31, 2023 • [ hack, energy ] West Texas Gas (WTG) filed a notice of data breach after discovering that an unauthorized party gained access to their systems, copied certain files, and deleted other files.