-
Lifespan Services
May 25, 2022
•
[ ransomware, malware, healthcare ]
Lifespan Services, a non-profit provider of services to individuals with disabilities, confirms it was the victim of a ransomware attack that affected data on its servers.
-
Linn County
May 25, 2022
•
[ ransomware, malware, government ]
The Conti ransomware gang publishes all of the data it stole during a January attack on the government servers of Linn County.
-
SpiceJet
May 25, 2022
•
[ ransomware, malware ]
Low-cost Indian airline SpiceJet informs its customers of an attempted ransomware attack that has impacted some of its systems and caused delays on flight departures.
-
Multiple Sclerosis Center of Atlanta
May 25, 2022
•
[ leak, healthcare ]
The Multiple Sclerosis Center of Atlanta discloses a breach affecting 2,820 individuals.
-
WiredBucks
May 25, 2022
•
[ leak, misconfiguration, technology ]
In May 2022, the now defunct social media influencer platform WiredBucks suffered a data breach that was later redistributed as part of a larger corpus of data. The incident exposed over 900k email and IP addresses alongside names, usernames, earnings via the platform, physical addresses and passwords stored as plain text.
-
Police servers in China's Xinjiang region
May 24, 2022
A hack on police servers in China's Xinjiang region yields thousands of graphic images and videos of Uyghur detainees suffering in detention camps.
-
Austrian federal state Carinthia
May 24, 2022
•
[ ransomware, malware, government ]
Austrian federal state Carinthia is hit by the BlackCat ransomware gang, also known as ALPHV, who demands a $5 million to unlock the encrypted computer systems.
-
Port of London Authority/PLA
May 24, 2022
•
[ hack, ddos, government ]
The Pro-Iranian group ALtahrea Team takes down the website of the Port of London Authority/PLA.
-
-
Undisclosed NFT collector
May 24, 2022
•
[ hack, finance ]
A hacker steals dozens of NFTs worth more than $1.4 million from a single collector on Tuesday, according to blockchain observers.
-
Homestead Hospice & Palliative Care
May 23, 2022
•
[ hack, phishing, healthcare ]
The data of 28,332 patients of Homestead Hospice & Palliative Care in Georgia is potentially compromised during a yearlong hack of multiple employee email accounts between April 1, 2021, and March 31, 2022.
-
Washington University School of Medicine
May 23, 2022
•
[ hack, healthcare ]
Washington University School of Medicine announces that patient information has been exposed as a result of a recent data security incident when an unknown actor gained access to the email accounts of certain employees between March 4, 2022, and March 28, 2022.
-
MGM Resorts
May 22, 2022
Miscreants dump on Telegram more than 142 million customer records stolen from MGM Resorts, exposing names, postal and email addresses, phone numbers, and dates of birth for any would-be identity thief.
-
Twitter account of NFT artist Beepie (Mike Winkelmann)
May 22, 2022
Hackers take control of the Twitter account of the well-known NFT artist Beeple and are able gather around $270,000 in ETH and steal 45 NFTs worth around $165,000.
-
Medical Pharmacies
May 22, 2022
•
[ ransomware, leak, malware ]
SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
-
Zola
May 21, 2022
•
[ financial, brute-force, retail ]
Wedding registry website Zola confirms that it was hit with a cyberattack after dozens of customers complained on social media about their accounts being drained or breached.
-
QuestionPro
May 21, 2022
•
[ hack, misconfiguration, technology ]
In May 2022, the survey website QuestionPro was the target of an extortion attempt relating to an alleged data breach. Over 100GB of data containing 22M unique email addresses (some of which appear to be generated by the platform), are alleged to have been extracted from the service along with IP addresses, browser user agents and results relating to surveys. QuestionPro would not confirm whether a breach had occurred (although they did confirm they were the target of an extortion attempt), so the data was initially flagged as "unverified". Subsequent verification by impacted HIBP subscribers later led to the removal of the unverified flag.
-
The Catholic Foundation
May 20, 2022
Vice Society encrypts network and threatens to leak data on their dark web portal.
-
Aesto Health
May 20, 2022
•
[ hack, healthcare ]
Aesto Health says it suffered a data security incident that impacted its internal IT systems when an unauthorized actor had accessed Aesto Health's systems between December 25 and March 8.
-
Italian airports of Malpensa, Linate and Orio al Serio
May 20, 2022
•
[ hack, ddos, technology ]
The websites of the Italian airports of Malpensa, Linate and Orio al Serio are taken down by the pro-Russian Killnet collective.
