-
New Horizons Medical
April 19, 2023
•
[ hack, healthcare ]
New Horizons Medical files a notice of data breach after learning that a recent data security incident compromised the personal information of 12,317 New Horizons patients.
-
PaperCut
April 19, 2023
•
[ ransomware, malware, technology ]
Print management software developer PaperCut warns customers to update their software immediately, as hackers are actively exploiting two flaws, ZDI-CAN-18987 / PO-1216 and ZDI-CAN-19226 / PO-1219, to gain access to vulnerable servers. Later the attacks are attributed to the Cl0p ransomware gang.
-
Collins Electrical Construction Company
April 18, 2023
•
[ hack, manufacturing ]
Collins Electrical Construction Company discloses a data breach stemming from an unauthorized access to the network.
-
Itallian Ministry of Infrastructure and Transport
April 18, 2023
The pro-Russian hacktivist group KillNet starts its campaign agan Italy and takes down multiple websites including the Italian Labour Ministry, Carabinieri, the Italian High Council of the Judiciary (Consiglio Superiore Della Magistratura), Azienda Trasporti Milanesi (ATM), multiple airports, several banks, the Ministry of Infrastructure and Transport.
-
Cisco
April 18, 2023
•
[ espionage, malware, technology ]
The UK National Cyber Security Centre (NCSC), US Cybersecurity and Infrastructure Security Agency (CISA), NSA, FBI, and Cisco warn of Russian state-sponsored APT28 hackers deploying a custom malware named 'Jaguar Tooth' on Cisco IOS routers, exploiting CVE-2017-6742, allowing unauthenticated access to the device.
-
Huntington Ingalls Industries (HII)
April 18, 2023
•
[ hack, manufacturing ]
Huntington Ingalls Industries (HII) files a notice of data breach after learning that confidential consumer information stored on the company's computer network was accessed by an unauthorized party.
-
Undisclosed government agency in Ukraine.
April 18, 2023
•
[ espionage, government ]
The Ukraine's computer emergency response team, CERT-UA, identifies a cyber-espionage campaign carried on by an unidentified threat actor named UAC-0063, targeting an undisclosed government agency in Ukraine.
-
Lake Dallas Independent School District
April 18, 2023
•
[ ransomware, leak, malware ]
The Royal ransomware gang adds Lake Dallas Independent School District in Texas to its leak site.
-
WebTPA Employer Services
April 18, 2023
•
[ hack, finance ]
The WebTPA Employer Services (WebTPA) suffers a data breach impacting close to 2.5 million individuals.
-
Pineland Schools
April 17, 2023
•
[ ransomware, malware, education ]
Pineland Schools is added to the LockBit ransomware site with some files as proof of claim. The attackers claim to have 64GB of data.
-
Uniondale Union Free School District
April 17, 2023
•
[ ransomware, malware, education ]
Uniondale Union Free School District (UUFSD) in New York is added to Medusa's leak site with some files leaked.
-
Point32Health
April 17, 2023
•
[ ransomware, malware, finance ]
Point32Health, a New England health insurance firm serving more than two million people, is dealing with a ransomware attack impacting several of its systems.
-
Chattanooga Heart Institute
April 17, 2023
•
[ ransomware, malware, healthcare ]
The Chattanooga Heart Institute notifies more than 170,000 patients and others that hackers may have stolen their sensitive personal and medical information in a cyberattack detected in April. The Karakurt ransomware group claimed credit for the hack a month later.
-
MAC Pizza Management
April 17, 2023
•
[ ransomware, malware, retail ]
MAC Pizza Management files a notice of data breach after learning that confidential information belonging to thousands of people was compromised following a ransomware attack.
-
Valid Certificadora
April 16, 2023
•
[ ransomware, leak, malware ]
Valid Certificadora, a Brazilian firm that issues digital certificates used by both businesses and public entities is added to the CrossLock ransomware leak site.
-
Hundred Finance
April 15, 2023
Multi-chain lending protocol Hundred Finance suffers a security breach, which results in the theft of approximately $7M worth of assets.
-
Midwives of Windsor
April 15, 2023
Midwives of Windsor discloses that a data breach involving email has exposed the personal and pregnancy information of an unknown number of clients.
-
RentoMojo
April 15, 2023
In April 2023, the Indian rental service RentoMojo suffered a data breach. The breach exposed over 2M unique email addresses along with names, phone, passport and Aadhaar numbers, genders, dates of birth, purchases and bcrypt password hashes.
-
Jobzone
April 15, 2023
•
[ leak, technology ]
In April 2023, data from the Israeli jobs website Jobzone was posted online. The data included 30k records of email addresses, names, social security numbers, genders, dates of birth, fathers' names and physical addresses.
-
International Chapter of the P.E.O. Sisterhood (P.E.O.)
April 14, 2023
•
[ ransomware, malware, education ]
International Chapter of the P.E.O. Sisterhood (P.E.O.) files a notice of data breach after learning that a recent ransomware attack resulted in an unauthorized party gaining access to confidential consumer information.