Full List

Search

Recent Breaches

• Nestle March 24, 2022 • [ leak, misconfiguration ] The Anonymous collective leaks a 10GB trove of data from Nestl after the company unintentionally exposed some test data.
• Partnership HealthPlan of California March 24, 2022 • [ ransomware, malware, healthcare ] Partnership HealthPlan of California is hit with a Hive ransomware attack.
• decathlon March 24, 2022 • [ hack, ddos, retail ] In name of #OpRussia, the Anonymous collective takes down the Russian website of Decathlon.
• leroymerlin March 24, 2022 • [ hack, ddos, retail ] In name of #OpRussia, the Anonymous collective takes down the Russian website of Leroymerlin.
• Spokane Regional Health District (SRHD) March 24, 2022 • [ social, phishing, healthcare ] Spokane Regional Health District (SRHD) says it suffered a phishing attack that potentially exposed the personal information of 1,260 individuals. The organization discovered a phishing email on February 24 and found that an unauthorized actor potentially previewed some protected health information.
• UK Ministry of Defence March 24, 2022 The UK Ministry of Defence suspends online application and support services for the British Army's Capita-run Defence Recruitment System and confirms that digital intruders compromised some data.
• auchan March 24, 2022 • [ hack, ddos, retail ] In name of #OpRussia, the Anonymous collective takes down the Russian website of Auchan.
• Central Bank of Russia March 24, 2022 • [ hack, leak, government ] In name of #OpRussia, the Black Rabbit World, an hacktivist group affiliated with the Anonymous collective, leaks 28GB of data allegedly stolen from the Central Bank of Russia.
• Christie Clinic March 24, 2022 • [ leak, phishing, healthcare ] Christie Clinic issues a notice about a recent email security incident that potentially exposed certain patient information.
• Ferrovie dello Stato Italiane (Italian Railways) March 23, 2022 • [ hack, government ] Italian railway company Ferrovie dello Stato Italiane temporarily halts some ticket sale services as it feared they had been targeted by a cyber attack.
• Rostec March 23, 2022 • [ espionage, malware, manufacturing ] Multiple Chinese APT groups leveraged the Russia and Ukraine war as a lure for cyberespionage operations. The APT groups have been using sanctions-related baits to attack Russian defense institutes, part of the Rostec Corporation. The hackers used new tools, which have not previously been described: a sophisticated multi-layered loader and a backdoor dubbed SPINNER. These tools use advanced evasion and anti-analysis techniques such as multi-layer in-memory loaders and compiler-level obfuscations. The operation targeted defense research institutes in Russia and possibly also in Belarus. The purpose of the backdoor and the operation is likely to collect information from targets inside the high-tech Russian defense industry to support China in its technological advancement.
• Undetermined March 23, 2022 Swedish authorities reported an increase in DDoS attacks against government entities, specifically mentioning the targeting of financial and transportation administration.
• Cashio March 23, 2022 An anoymous attacker uses an infinite loop vulnerability to mint and steal the equivalent of $48M.
• Establishment of the Agency for the Environmental Protection of the Marche Region March 23, 2022 • [ ransomware, leak, malware ] Vice Society encrypts network and threatens to leak data on their dark web portal.
• Ronin Network March 23, 2022 A hacker steals almost $620 million in Ethereum and USDC tokens from Axie Infinity's Ronin network bridge, making it possibly the largest crypto hack in history.
• Russian Ministry of Internal Affairs March 23, 2022 • [ hack, ddos, government ] A number of web pages belonging to public authorities were subjected to DDoS attacks. The attacks compromised equipment and networks, by exploiting security vulnerabilities and enrolling them in a botnet network.
• Ukranian Logistical Services March 23, 2022 • [ hack ] UAC-0082 conducted a destructive attack on the network of a transportation/logistics provider, the type of organization that could be involved in moving Ukrainian supplies to conflict hotspots. The firm is headquartered in western Ukraine, where much of the foreign military and humanitarian assistance is entering the country.
• Undetermined March 23, 2022 • [ leak, finance ] Anonymous leaked 28GB worth of a Russian bank's data now available for public download. Distributed Denial of Secrets (aka DDoSecrets) announced archiving the entire data on its official website. Those 35,000 files contain some of the regulator's "secret agreements". They have been distributed to various online points. According to a post by the BBC Russian Service, in the files are hundreds of audit reports and information on bank owners.
• Advanced Medical Practice Management (AMPM) March 22, 2022 • [ leak, healthcare ] Advanced Medical Practice Management (AMPM) reveals to have suffered a data breach that impacted over 56,000 individuals
• Hanon Systems March 22, 2022 SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"