Full List

Search

Recent Breaches

• Indian Creek Foundation February 6, 2021 • [ ransomware, malware, healthcare ] Pennsylvania health service provider suffers a ransomware incident.
• Salt Lake Community College February 5, 2021 • [ hack, misconfiguration, education ] A virtual poetry slam part of Black History Month events at Salt Lake Community College is commandeered by unknown individuals who display racist and anti-Black messages as well as inappropriate images of children.
• SitePoint February 5, 2021 • [ hack, technology ] SitePoint, an Australian learn-to-code publishing website, has been compromised while promoting the book Hacking for Dummies on its homepage.
• Mutuelle Nationale des Hospitaliers et des professionnels de la sant et du social February 5, 2021 • [ hack, misconfiguration, healthcare ] The MNH disconnected computer systems on Friday, February 5, 2021 because of a cyberattack. A Citrix / Netscaler Gateway system was affected by the CVE-2019-19781 vulnerability, known as Shitrix.
• Qualinet February 5, 2021 • [ ransomware, malware ] Qualinet is hit with an Avaddon ransomware attack.
• SVI Assurances February 5, 2021 • [ ransomware, malware, finance ] SVI Assurances is hit with an Avaddon ransomware attack.
• Charles J. Hilton & Associates (CJH) February 5, 2021 • [ social, phishing, healthcare ] Charles J. Hilton & Associates (CJH) reveals to have suffered a phishing attack, potentially exposing the personal health information of more than 36,000 patients of University of Pittsburgh Medical Center (UPMC).
• CityBee February 5, 2021 • [ leak, misconfiguration, automotive ] In February 2021, the Lithuanian car-sharing service CityBee announced they'd suffered a data breach that exposed 110k customers' personal information. The breach exposed names, email addresses, government issued IDs and passwords stored as unsalted SHA-1 hashes.
• City of Titusville February 4, 2021 • [ social, phishing, government ] Florida City is hit with phishing attack compromising employee email accounts and personal information within them.
• E-Pay Malaysia February 4, 2021 • [ leak, finance ] A significant number of user accounts belonging to local e-payment provider, E-Pay Malaysia has made their way to a popular database marketplace forum. According to the listing, the seller claims that the database which was dated January 2020 contained information belonging to 380,000 accounts.
• Squirrel Hill Health Center February 4, 2021 • [ ransomware, malware, healthcare ] Squirrel Hill Health Center is unable to access certain files due to malware.
• ENKI February 4, 2021 South Korean cybersecurity firm ENKI report that they were the target of a campaign by the Lazarus Group exploiting an Internet Explorer 0-day vulnerability.
• Serco February 4, 2021 The Belgian military and the European Space Agency (ESA) are among organisations that have sought assurances from Serco, the company behind NHS Test and Trace, following a cyber attack.
• Wonderbox February 4, 2021 Wonderbox, is hit with a ransomware attack and 30 gb of data is leaked.
• Companhia Paranaense de Energia (Copel Utility) February 4, 2021 Hackers said they gained access to Copel's CyberArk cloud security solution for privileged access management and exfiltrated plaintext passwords across Copel's local and internet infrastructure, according to the report.
• Eletronuclear February 4, 2021 • [ ransomware, malware, energy ] A nuclear power subsidiary of Brazil's Eletrobras suffered a malware attack but no operations were impacted. The network that was attacked by ransomware is not related to the operational systems of nuclear energy plants Angra 1 and Angra 2, said Electrobras.
• Patriotic Brigade Knights February 4, 2021 • [ hack ] A collective of anti-fascist Israeli hackers dubbed Hayalim Almonim, breaks into a website of the Patriotic Brigade Knights a group allied to the white-supremacist Ku Klux Klan (KKK).
• Stormshield February 4, 2021 • [ leak, technology ] French cyber-security firm Stormshield, a major provider of security services and network security devices to the French government, said that a threat actor gained access to one of its customer support portals and stole information on some of its clients. The company is also reporting that attackers managed to steal parts of the source code for the Stormshield Network Security (SNS) firewall.
• Emsisoft February 3, 2021 • [ leak, misconfiguration, technology ] Antivirus solutions provider Emsisoft reveals last that a third-party had accessed a publicly exposed database containing technical logs.
• Sacred Heart Hospital February 3, 2021 • [ hack, healthcare ] The Sacred Heart Hospital in Mol is hit by a cyber attack