-
Homestead Hospice & Palliative Care
May 23, 2022
•
[ hack, phishing, healthcare ]
The data of 28,332 patients of Homestead Hospice & Palliative Care in Georgia is potentially compromised during a yearlong hack of multiple employee email accounts between April 1, 2021, and March 31, 2022.
-
Washington University School of Medicine
May 23, 2022
•
[ hack, healthcare ]
Washington University School of Medicine announces that patient information has been exposed as a result of a recent data security incident when an unknown actor gained access to the email accounts of certain employees between March 4, 2022, and March 28, 2022.
-
MGM Resorts
May 22, 2022
Miscreants dump on Telegram more than 142 million customer records stolen from MGM Resorts, exposing names, postal and email addresses, phone numbers, and dates of birth for any would-be identity thief.
-
Twitter account of NFT artist Beepie (Mike Winkelmann)
May 22, 2022
Hackers take control of the Twitter account of the well-known NFT artist Beeple and are able gather around $270,000 in ETH and steal 45 NFTs worth around $165,000.
-
Medical Pharmacies
May 22, 2022
•
[ ransomware, leak, malware ]
SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
-
Zola
May 21, 2022
•
[ financial, brute-force, retail ]
Wedding registry website Zola confirms that it was hit with a cyberattack after dozens of customers complained on social media about their accounts being drained or breached.
-
QuestionPro
May 21, 2022
•
[ hack, misconfiguration, technology ]
In May 2022, the survey website QuestionPro was the target of an extortion attempt relating to an alleged data breach. Over 100GB of data containing 22M unique email addresses (some of which appear to be generated by the platform), are alleged to have been extracted from the service along with IP addresses, browser user agents and results relating to surveys. QuestionPro would not confirm whether a breach had occurred (although they did confirm they were the target of an extortion attempt), so the data was initially flagged as "unverified". Subsequent verification by impacted HIBP subscribers later led to the removal of the unverified flag.
-
The Catholic Foundation
May 20, 2022
Vice Society encrypts network and threatens to leak data on their dark web portal.
-
Aesto Health
May 20, 2022
•
[ hack, healthcare ]
Aesto Health says it suffered a data security incident that impacted its internal IT systems when an unauthorized actor had accessed Aesto Health's systems between December 25 and March 8.
-
Italian airports of Malpensa, Linate and Orio al Serio
May 20, 2022
•
[ hack, ddos, technology ]
The websites of the Italian airports of Malpensa, Linate and Orio al Serio are taken down by the pro-Russian Killnet collective.
-
Oswego County Opportunities (OCO)
May 20, 2022
•
[ hack, phishing, government ]
Oswego County Opportunities (OCO) announces that a limited number of employee email accounts were accessed by an unknown actor, when suspicious email activity was detected and the email accounts were immediately secured.
-
Dellner Couplers AB
May 20, 2022
•
[ ransomware, leak, malware ]
RANSOM HOUSE criminal gang exploits data and encrypts systems. Data and ransom demands presented on "leak" site on dark web.
-
OE Enterprise
May 20, 2022
•
[ leak, phishing, healthcare ]
OE Enterprise discloses a phishing attack impacting 4,075 individuals.
-
Sberbank
May 20, 2022
•
[ hack, ddos, finance ]
Russia's banking and financial services company Sberbank is being targeted in a wave of unprecedented DDoS attacks
-
Carmel College
May 19, 2022
•
[ ransomware, leak, malware ]
Vice Society encrypts network and threatens to leak data on their dark web portal.
-
Spirit Super
May 19, 2022
•
[ social, phishing, healthcare ]
A phishing attack at Australian pension provider Spirit Super results in "some personal details being compromised".
-
Fort Sumner Municipal Schools.
May 19, 2022
•
[ ransomware, leak, malware ]
The Cl0p ransomware gang leaks the data stolen from the Fort Sumner Municipal Schools.
-
Atlanta Perinatal Associates
May 19, 2022
•
[ ransomware, malware, healthcare ]
The Vice Society ransomware gang claims to have acquired patient files from Atlanta Perinatal Associates.
-
Magtek
May 19, 2022
•
[ ransomware, leak, malware ]
Lorenz executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
-
Washington Local Schools
May 18, 2022
•
[ hack, education ]
The Washington Local Schools says a cyberattack affected phone, email, internet and WiFi networks as well as all Google Classroom systems.