Full List

Search

Recent Breaches

• Einhaus Group March 1, 2023 • [ ransomware, malware, finance ] The Royal ransomware group encrypted all systems of the Germany-based Einhaus Group in March 2023, resulting in total operational paralysis across its 5,000 retail points. Despite paying ~200K in Bitcoin ransom, the company went bankrupt. Several Royal group suspects were arrested and crypto assets seized, but operations were not restored.
• Hatch Bank February 28, 2023 Hatch Bank, a digital-first bank that provides infrastructure for fintech companies offering their own brand credit cards, confirms that attackers exploited the Fortra's GoAnywhere CVE-2023-0669 zero-day vulnerability in the company's internal file transfer software that allowed access to thousands of customer Social Security numbers.
• Veris Residential February 28, 2023 • [ leak ] Veris Residential files a notice of data breach following a cybersecurity incident that leaked confidential consumer information.
• Association of Southeast Asian Nations (ASEAN) February 28, 2023 • [ espionage, government ] Chinese state-sponsored threat actors managed to breach the mail servers operated by the Association of Southeast Asian Nations, stealing a trove of data that may have contained strategic information about the economy and politics of member countries.
• Ingenico February 28, 2023 • [ ransomware, malware, technology ] The Russian ransomware gang Snatch claims to have stolen data from Ingenico, a merchant services technology company based in France.
• Oregon City February 28, 2023 • [ ransomware, malware, government ] Oregon City discloses to have been hit by a sophisticated ransomware attack.
• Thermea Spa February 28, 2023 Customers who purchased gift certificates from Thermea spa between early November and late February are told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses.
• Montgomery General Hospital February 28, 2023 • [ ransomware, malware, healthcare ] Montgomery General Hospital is forced to take its systems offline after it was breached and hit by a ransomware attack.
• Compass Behavioral Health February 28, 2023 • [ leak, healthcare ] Compass Behavioral Health discloses a data security incident that involved the protected health information (PHI) of 1,064 patients.
• Federacion de Aseguradores Colombianos (Fasecolda) February 28, 2023 • [ hack, finance ] The Federacion de Aseguradores Colombianos (Fasecolda), an association for Colombian insurers, suffers a cyber attack.
• White Settlement Independent School District February 28, 2023 • [ ransomware, malware, education ] LockBit adds White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access and may have exfiltrated a lot of files.
• Pierce Transit February 27, 2023 • [ ransomware, malware, government ] Pierce Transit discloses to have been hit with a LockBit 3.0 ransomware attack.
• LastPass February 27, 2023 LastPass discloses more information on a "coordinated second attack," where a threat actor accessed and stole data from the Amazon AWS cloud storage servers for over two months.
• U.S. Marshals Service (USMS) February 27, 2023 • [ ransomware, malware, government ] The U.S. Marshals Service (USMS) is investigating the theft of sensitive law enforcement information following a ransomware attack that has impacted what it describes as "a stand-alone USMS system."
• Pipefitters Local 537 February 27, 2023 • [ financial, healthcare ] A cyberattack on Pipefitters Local 537, a Boston-based labor union's health fund, results in the loss of $6.4 million.
• CityJerks February 27, 2023 • [ hack, leak ] In early 2023, the "mutual masturbation" website CityJerks suffered a data breach that exposed 177k unique email addresses. The breach also included data from the TruckerSucker "dating app for REAL TRUCKERS and REAL MEN" with the combined corpus of data also exposing usernames, IP addresses, dates of birth, sexual orientations, geo locations, private messages between members and passwords stored as salted MD5 hashes. The data was listed on a public hacking site and provided to HIBP by a source who requested it be attributed to "discord.gg/gN9C9em".
• Tennessee State University (TSU) February 26, 2023 • [ ransomware, malware, education ] Tennessee State University (TSU) posts a "Notice of Suspicious Network Activity" after the institution experienced what it believes to have been a ransomware attack.
• Nine Danish hospitals February 26, 2023 • [ hack, ddos, healthcare ] A series of distributed-denial-of-service (DDoS) attacks shut down nine Danish hospitals' websites for a few hours, but did not have any life-threatening impact on the medical centers' operations or digital infrastructure.
• TheGradCafe February 26, 2023 • [ leak, education ] In February 2023, the grad school admissions search website TheGradCafe suffered a data breach that disclosed the personal records of 310k users. The data included email addresses, names and usernames, genders, geographic locations and passwords stored as bcrypt hashes. Some records also included physical address, phone number and date of birth. TheGradCafe did not respond to multiple attempts to disclose the breach.
• Baldor Specialty Foods February 25, 2023 • [ hack ] Baldor Specialty Foods files a notice of data breach after a malicious actor carried out a cyberattack against the company resulting in confidential consumer information being compromised.