Full List

Search

Recent Breaches

• Phone House España April 8, 2021 • [ ransomware, leak, malware ] In April 2021, the Spanish retailer Phone House allegedly suffered a ransomware attack that also exposed significant volumes of customer data. Attributed to the Babuk ransomware, a collection of data alleged to be a subset of a larger corpus was posted to a dark web site and contained 5.2M email addresses along with names, nationalities, genders, dates of birth, phone numbers and physical addresses. Phone House has been threatened with further releases if a ransom is not paid.
• Upstox April 8, 2021 • [ finance, leak ] In April 2021, Indian brokerage firm Upstox suffered a data breach. The incident exposed extensive personal information on over 100k customers including names, genders, dates of birth, physical addresses, banking information and passwords stored as bcrypt hashes. Extensive "know your customer" information was also exposed including scans of bank statements, cheques and identity documents complete with Aadhaar numbers. The data was provided to HIBP by a source who requested it be attributed to "white_peacock@riseup.net".
• Gruppo Gino April 7, 2021 • [ ransomware, malware, retail ] The Gruppo Gino car dealer is hit with a ransomware attack.
• Georg Wieser's Trnitzer "Nah & Frisch" April 7, 2021 • [ ransomware, malware, retail ] Georg Wieser's T rnitzer "Nah & Frisch"market is hit with a ransomware attack.
• Reproductive Biology Associates April 7, 2021 • [ ransomware, malware, healthcare ] Reproductive Biology Associates, a fertility clinic, suffers a ransomware attack, stolen data includes patients' personal information and embryology data.
• Bernards School District April 7, 2021 • [ hack, education ] The Bernards School District remains down after a cyber attack.
• Douglas Elliman April 7, 2021 • [ leak ] Thousands of New York residents who live in buildings run by Douglas Elliman's property management arm may have had their personal information compromised after the company's IT network is breached.
• Eduro Healthcare April 7, 2021 • [ ransomware, leak, malware ] The Astro Team ransomware threat actors dump 40GB patient-related files allegedly from Eduro Healthcare.
• Haverhill Public Schools April 7, 2021 • [ ransomware, malware, education ] A ransomware attack forces the Haverhill Public Schools to cancel classes.
• Municipality of Olomouc April 7, 2021 • [ ransomware, malware, government ] The Czech municipality of Olomouc is hit with a ransomware attack.
• City of El Monte April 6, 2021 • [ government ] City Hall computers at the City of El Monte are replaced after an unauthorized access.
• SlideTeam April 6, 2021 • [ hack, misconfiguration, technology ] In April 2021, the "worlds largest collection of pre-designed presentation slides" SlideTeam had 1.4M records breached and later published to a popular hacking forum the following year. Allegedly sourced from a compromised Magento instance, the data included names, email addresses and passwords stored as salted hashes.
• Coughlin & Cerhart, LLP April 5, 2021 • [ leak ] New York law firm suffers data breach revealing client personal information.
• Consolidated High School District 230 April 5, 2021 • [ leak, education ] Illinois school district suffers attack, 10 GB of data is leaked online.
• Bakker Logistiek April 5, 2021 • [ ransomware, malware, retail ] A ransomware attack against conditioned warehousing and transportation provider Bakker Logistiek causes a cheese shortage in Dutch supermarkets.
• Wurth April 4, 2021 French subsidiary of the German hardware chain, experiences an unspecified "security incident".
• City of Lawrence April 4, 2021 • [ ransomware, malware, government ] The City of Lawrence is hit with a ransomware attack.
• Federal Group April 3, 2021 • [ ransomware, malware ] Tasmania Casino operator Federal Group is hit with a ransomware attack.
• National College of Ireland (NCI) April 3, 2021 • [ ransomware, malware, education ] The National College of Ireland is hit with a ransomware attack.
• Asteelflash April 2, 2021 • [ ransomware, malware, manufacturing ] Asteelflash, a leading French electronics manufacturing services company, suffers a cyberattack by the REvil ransomware gang who is demanding a $24 million ransom.