-
City of Dallas
May 1, 2023
•
[ ransomware, malware, government ]
The City of Dallas suffers a Royal ransomware attack, causing it to shut down some of its IT systems to prevent the attack's spread.
-
Level Finance
May 1, 2023
Attackers exploit a Level Finance smart contract vulnerability to drain approximately $1,100,000 worth of cryptocurrency.
-
Roosevelt University
May 1, 2023
•
[ hack, education ]
Roosevelt University (RU) files a notice of data breach after discovering that an unauthorized actor was able to access confidential student and prospective student information in the school's possession.
-
Western Sydney University
May 1, 2023
•
[ hack, misconfiguration, education ]
Western Sydney University (WSU) notifies students and academic staff about a data breach after threat actors breached its Microsoft 365 and Sharepoint environment.
-
Le Coq Sportif Columbia
May 1, 2023
•
[ leak, retail ]
In January 2025, a data breach from the Columbian website for Le Coq Sportif was posted to a popular hacking forum. The data included almost 80k unique email addresses with the breach dating back to May 2023. Impacted data included physical and IP addresses, names, purchases, genders, dates of birth and bcrypt password hashes. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
-
North Carolina Housing Finance Agency
April 30, 2023
•
[ financial, phishing, government ]
The North Carolina Housing Finance Agency (NCHFA) loses nearly $3 million in a business email compromise (BEC) scam.
-
TIC Hosting
April 30, 2023
•
[ hack, technology ]
TIC Hosting, a hosting provider in Romania, suffers a data breach affecting 300 customers.
-
Bluefield University
April 30, 2023
•
[ ransomware, malware, education ]
The Bluefield University is hit with an Avos ransomware attack. Few days later the ransomware gang hijacks the University's emergency broadcast system, "RamAlert," to send students and staff SMS texts and email alerts that their data was stolen and would soon be released.
-
Our Sunday Visitor
April 30, 2023
Data extortion group Karakurt claims it attacked Our Sunday Visitor, a Catholic publishing company, The attackers claim to have stolen 130 gigabytes of data, including accounting documents, HR information, employee data, financial contracts, invoices, marketing information and more.
-
Pareto Phone Limited
April 30, 2023
•
[ leak ]
ChildFund in New Zealand issues a public notice about a data breach involving a telemarketing company, Pareto Phone Limited. ChildFund had contracted with Pareto in 2014 to conduct fundraising activity on its behalf.
-
HWL Ebsworth
April 30, 2023
The Australian commercial law firm HWL Ebsworth falls victim to a BlackCat, ransomware attack, with attackers claiming to have obtained client information and employee data.
-
Penncrest School District
April 29, 2023
•
[ ransomware, malware, healthcare ]
Penncrest School District announces a ransomware attack over the weekend that disrupted their systems.
-
County of Spartanburg
April 29, 2023
•
[ ransomware, malware, government ]
The South Carolina county of Spartanburg is dealing with a ransomware attack that has limited its IT and phone systems.
-
Orqa
April 29, 2023
•
[ insider, malware, manufacturing ]
Orqa, a maker of First Person View (FPV) drone racing goggles, claims that a contractor introduced code into its devices' firmware that acted as a time bomb designed to brick them.
-
Relentless Church
April 29, 2023
•
[ ransomware, malware ]
The notorious LockBit ransomware group adds South Carolina-based Relentless Church to its list of victims, claiming to have stolen employee data ranging from passports to financial documents.
-
Aetonix Systems
April 28, 2023
Health and personal information of up to 100,000 patients at Queensway Carleton Hospital are affected by a major data breach involving Aetonix Systems, an Ottawa-based third-party software provider.
-
Berlin Packaging
April 28, 2023
•
[ hack ]
Berlin Packaging files a notice of data breach after discovering that a recent cyberattack compromised confidential human resources information stored on the company's computer network.
-
Brightly Software
April 28, 2023
U.S. tech company and Siemens subsidiary Brightly Software notifies customers that their personal information and credentials were stolen by attackers who gained access to the database of its SchoolDude online platform.
-
National Smallbore Rifle Association (NSRA)
April 28, 2023
•
[ hack ]
The National Smallbore Rifle Association (NSRA) confirms that it has been the victim of a cyber-attack.
-
Alto Calore Servizi
April 28, 2023
•
[ ransomware, malware, government ]
Alto Calore Servizi, an Italian company that provides drinking water to nearly half a million people is experiencing some technical disruptions following a ransomware attack.