Full List

Search

Recent Breaches

• Undetermined February 26, 2022 • [ hack, misconfiguration, finance ] A number of Russia's largest domestic news websites were attacked and information replaced with a "tombstone" for the war dead. Many of the sites were then taken offline.
• Ukraine border control February 26, 2022 • [ hack, malware, government ] A Ukraine border control station is struck with a data wiper cyberattack severely slowing the process of allowing refugees to cross into Romania.
• Russian Ministry of Defense February 25, 2022 • [ leak, government ] Anonymous breaches a Russian Ministry of Defense database including personal contact information and leaks it online.
• Aeroflot February 25, 2022 • [ hack, ddos, government ] Russian government entities and state-owned companies have been targeted over events in Ukraine, with the websites of the Kremlin, flagship carrier and major lender among those to have seen outages or temporary access issues.
• Undetermined February 25, 2022 • [ hack, education ] The Wordfence team has identified a cyberattack on Ukrainian universities that coincided with the invasion of Ukraine by Russia, and resulted in at least 30 compromised Ukrainian university websites. The threat actor has stated publicly that they support Russia in the conflict.
• New York State's Joint Commission on Public Ethics February 25, 2022 • [ hack, government ] New York government ethics watch dog is forced to shut dow all systems following an unidentified cyberattack.
• Spine Diagnostic and Pain Treatment February 25, 2022 • [ ransomware, malware, healthcare ] Louisiana medical center is hit with Conti ransomware attack.
• Ukraine border control station February 25, 2022 • [ hack, malware, government ] A Ukraine border control station has been struck with a data wiper cyberattack that has slowed the process of allowing refugees to cross into Romania.
• Undetermined February 25, 2022 • [ social, phishing, finance ] UNC1151 has targeted Employees of a Kazakhstani education institution. Mass phishing emails have recently been observed; after the account is compromised, the threat actiors, by the IMAP protocol, get access to all the messages. Subsequently, the attacks leverage the contact information stored in the victim's address book to propagate the phishing messages to other targets.
• AON February 25, 2022 • [ hack, finance ] Professional services and insurance firm AON suffers a cyberattack.
• Gems Education February 25, 2022 • [ leak, education ] Dubai's largest education operator suffers a cyberattack compromising student personal information.
• Undetermined February 25, 2022 UNC1151 has targeted a number of Belarusian organizations. Mass phishing emails have recently been observed; after the account is compromised, the threat actiors, by the IMAP protocol, get access to all the messages. Subsequently, the attacks leverage the contact information stored in the victim's address book to propagate the phishing messages to other targets.
• Baltimore State Attorney's Office February 24, 2022 The official Twitter account for the Baltimore State Attorney's Office is hacked.
• RT February 24, 2022 • [ hack, ddos, technology ] Anonymous takes down the site of Russian news outlet RT.
• ARcare February 24, 2022 • [ hack, malware, healthcare ] ARcare notifies people whose personal and/or medical information may have been accessed or acquired in a malware incident impacting 345,353 patients.
• Kyiv Post February 24, 2022 • [ hack, ddos, technology ] A Ukrainian news website reports that its site has been under constant cyberattack during the Russian-Ukrainian armed conflict. The DDOS attack incapacitated their systems and they had to find alternative means to publish the news by posting shortened stories on Facebook, Twitter, and LinkedIn.
• Undetermined February 24, 2022 • [ espionage, phishing, finance ] A phishing campaign was observed using a possibly compromised Ukrainian armed service member's email account, to target European government personnel involved in managing the logistics of refugees fleeing Ukraine. Researchers indicate there was a clear preference for targeting individuals with responsibilities related to transportation, financial and budget allocation, administration, and population movement within Europe.
• Undetermined February 24, 2022 ESET identified a further wiper in Ukrainian government networks, affecting organizations that had not been attacked by HermeticWiper and does not share any code similarity with it. On February 25, the attackers dropped a new version of IsaacWiper with debug logs, indicating that the attackers were unable to wipe some of the compromised machines. The malware was developed/employed at least since October 19, 2021.
• Viasat February 24, 2022 • [ hack, ddos, technology ] During the early hours of February 24, satellite internet connections were disrupted at Viasat. A mysterious cyberattack against the satellite's ground infrastructure "not the satellite itself "plunged tens of thousands of people into internet darkness. Impacted the ability of customers to connect to the ground network.
• Ukrainian Ministry of Internal Affairs February 23, 2022 • [ hack, ddos, government ] The websites of several Ukrainian banks and government departments, including the Ministry of Foreign Affairs, Ministry of Defense, Ministry of Internal Affairs, Security Service (SBU) and Cabinet of Ministers became inaccessible following a large DDoS attack. Most other sites came online within two hours of the attack but latency and outages continued into the following day for others.