-
AECO
May 3, 2023
•
[ ransomware, malware, manufacturing ]
The BlackCat ransomware gang lists the Italian sensor manufacturing company AECO in its leak site.
-
InvestorCOM
May 3, 2023
Franklin Templeton Canada and Mackenzie Investments disclose to have suffered a breach after their vendor InvestorCOM was affected by a breach carried out exploiting the CVE-2023-0669 Fortra GoAnywhere MFT Vulnerability
-
Pilot Credentials
May 3, 2023
American Airlines and Southwest Airlines, two of the largest airlines in the world, disclose data breaches caused by the hack of Pilot Credentials, a third-party vendor that manages multiple airlines' pilot applications and recruitment portals.
-
Sysco
May 3, 2023
•
[ hack, retail ]
Sysco, a leading global food distribution company, confirms that its network was breached by attackers who stole sensitive information, including business, customer, and employee data.
-
Veridian Credit Union
May 3, 2023
•
[ hack, finance ]
Veridian Credit Union files a notice of data breach after determining that a hacker successfully obtained access to Veridian's online membership application process.
-
ASL 1 Abruzzo
May 3, 2023
The Monti ransomware gang hits the ASL 1 L'Aquila (the Italian National Health Department of the Abruzzo region) and leaks 522 GB of data.
-
AvidXchange
May 3, 2023
•
[ ransomware, malware, finance ]
The RansomHouse ransomware gang publishes a trove of sensitive data stolen from payment software company AvidXchange after the company fell victim to ransomware for the second time this year.
-
Eurasia Group
May 3, 2023
•
[ espionage, phishing, government ]
Eurasia Group discovers suspicious activity within its email system by a sophisticated threat actor in two different circumstances.
-
Triad Business Bank
May 3, 2023
Triad Business Bank files a notice of data breach following a cybersecurity incident that compromised the confidential information of at least 8,235 individuals. Based on the company's official filing, the incident resulted in an unauthorized party gaining access to consumers' names and Social Security numbers
-
Instituto Nacional de Tecnologia Agropecuaria (INTA)
May 2, 2023
•
[ hack, government ]
The Argentinian Instituto Nacional de Tecnologia Agropecuaria (INTA), a public agency under the Ministry of Agriculture and Fisheries of the Nation, is hit with a cyber attack.
-
Northwest Health La Porte
May 2, 2023
•
[ ransomware, malware, healthcare ]
Northwest Health La Porte confirms that the protected health information of 10,256 patients was compromised in the Clop ransomware group's series of attacks exploiting the zero-day vulnerability in Fortra's GoAnywhere file transfer.
-
Physicians Insurance
May 2, 2023
•
[ social, phishing, finance ]
Physicians Insurance A Mutual Company, its affiliate MedChoice Risk Retention Group, and its subsidiary Experix (collectively "Physicians Insurance") file a notice of data breach after discovering that an unauthorized party gained access to an employee's email account.
-
Optima Tax Relief
May 2, 2023
•
[ leak, finance ]
Optima Tax Relief files a notice of data breach after learning that a recent data security incident exposed the confidential information of certain customers to an unauthorized party.
-
Wichita State University
May 2, 2023
•
[ hack, education ]
Wichita State University takes proactive measures and disconnects several University systems to isolate an unauthorized attempt by a third party to access the University's systems
-
Barracuda
May 1, 2023
•
[ hack, malware, technology ]
Barracuda, a company known for its email and network security solutions, warns customers that some of their Email Security Gateway (ESG) appliances were breached last week by targeting CVE-2023-2868, a now-patched zero-day vulnerability.
-
SNY Cargo
May 1, 2023
Researchers from ClearSky Security reveal the details of 'Fata Morgana' a watering hole attack on at least eight shipping and logistics companies in Israel. The attack is highly likely to be orchestrated by a nation-state actor from Iran, with a low confidence specific attribution to Tortoiseshell (also called TA456 or Imperial Kitten).
-
Emby
May 1, 2023
•
[ hack, misconfiguration, technology ]
Emby says it remotely shut down an undisclosed number of user-hosted media server instances that were recently hacked by exploiting a previously known vulnerability and an insecure admin account configuration.
-
Precision Anesthesia Billing
May 1, 2023
•
[ hack, healthcare ]
Precision Anesthesia Billing files a notice of data breach after discovering that an unauthorized party was able to access confidential patient information provided to the company.
-
Heritage Group
May 1, 2023
•
[ hack, misconfiguration ]
Heritage Group files a notice of data breach after an unauthorized party gained access to the company's computer network and was able to access confidential information belonging to certain current and former employees and their dependents.
-
Mission Community Hospital
May 1, 2023
•
[ ransomware, leak, malware ]
Mission Community Hospital is added to the list of the victims of the RansomHouse group, which claimed to have stolen 2.5 TB of data, including a large amount of patient data exploiting vulnerabilities on Paragon and Cisco.