Full List

Search

Recent Breaches

• Canadian Copper Mountain Mining Corporation (CMMC) December 27, 2022 • [ ransomware, malware, energy ] The Canadian Copper Mountain Mining Corporation (CMMC) in British Columbia has announced that it was the target of a ransomware attack that impacted its operations.
• Harrington Raceway and Casino December 27, 2022 • [ hack ] Harrington Raceway and Casino files a notice of data breach with the Maine Attorney General after learning that hackers were able to access confidential consumer information located on the company's servers for a period of two weeks.
• Advanced Systems December 27, 2022 • [ ransomware, malware, technology ] The Advanced Systems company, an Italian IT provider, informs that it has been the victim of a ransomware which has affected some company servers.
• ASBE December 27, 2022 • [ hack, ddos ] NoName057(16) claims to have conducted a DDoS attack against the website, and two subdomains, of a Latvian private freight carrier.
• Undisclosed Company December 27, 2022 • [ leak, government ] A cybercrime forum listed for sale what a seller purports to be 30 million passenger records for users of India's railways, including names, email addresses, phone numbers and more.
• Undisclosed company in financial services December 26, 2022 • [ ransomware, finance ] The BlackCat ransomware gang publish the data of a compromised a company in financial services, and create a replica of the victim's site to publish stolen data on it.
• Cott Systems December 26, 2022 • [ hack, technology ] Cott Systems, a cloud-based solutions provider, informed its customers that an "organized cyberattack" had hit the company systems and resulted in "unusual activity" on its servers
• Latvian Public Utilities Commission December 26, 2022 • [ hack, ddos, government ] NoName057(16) claims to have conducted a DDoS attack against the website of a Latvian regulatory body.
• RailYatri December 26, 2022 • [ leak, misconfiguration, technology ] In December 2022, Indias government-approved online travel agency RailYatri suffered a data breach. The incident impacted over 31M customers and exposed 23M unique email addresses. Also impacted were names, genders, phone numbers and tickets purchased, including travel information and fares.
• Port of Lisbon Administration (APL) December 25, 2022 • [ ransomware, malware, government ] The Administration of the Port of Lisbon was hit by a ransomware attack leveraging financial reports, audits, budgets, contracts, cargo information, ship logs, crew details, customer PII (personally identifiable information), port documentation, email correspondence, and more.
• Maybank December 25, 2022 • [ leak, finance ] Communications and Digital minister Fahmi Fadzil said his ministry through the Personal Data Protection Department in collaboration with CyberSecurity Malaysia is seeking feedback from Maybank and Astro on the alleged data leaks to ensure the legitimacy of data ownership
• Astro December 25, 2022 • [ leak, misconfiguration, technology ] A website had listed details of 3.5 million Astro customers.
• Election Comission December 25, 2022 • [ leak, government ] The Ministry of Communications and Digital (KKD) takes seriously the alleged data leak, via a website on December 25, that allegedly involves Maybank, Astro and the Election Commission (EC).
• Polish Civil Aviation Authority December 25, 2022 • [ hack, ddos, government ] NoName057(16) claims to have conducted DDoS attacks against the websites of eight Polish public institutions.
• U.S. Branch of Toyota December 25, 2022 • [ leak, manufacturing ] Toyota confirms that customer data was exposed in a third-party data breach after a threat actor leaked an archive of 240GB of stolen data on a hacking forum.
• Polish Public Procurement Office December 24, 2022 • [ hack, ddos, government ] NoName057(16) claims to have conducted DDoS attacks against the websites of seven Polish public institutions.
• Bristol Community College December 23, 2022 • [ ransomware, malware, education ] Bristol Community College is hit with a ransomware attack.
• Twitter December 23, 2022 • [ hack, misconfiguration, technology ] A threat actor claims to be selling public and private data of 400 million Twitter users scraped in 2021 using a now-fixed API vulnerability.
• Ziedot December 23, 2022 NoName057(16) claims to have conducted a DDoS attack against the website of a Latvian charity organization.
• Albertsons Companies December 23, 2022 • [ hack, malware, retail ] Albertsons Companies files a notice of data breach after learning that confidential information belonging to certain individuals was accessed by an unauthorized party following a malware attack.