KomplettFritid
February 1, 2021
•[ leak, misconfiguration, retail ]
In January 2023, the online Norwegian store KomplettFritid was reported as having had a data breach dating back to February 2021. The incident exposed 140k customer records including physical, email and IP addresses, names, phone numbers and passwords. Most passwords were stored as bcrypt hashes with a small number appearing in plain text.
Houilles
January 31, 2021
•[ hack, malware, government ]
The French municipality annouced on its social media that the City of Houilles is a victim of a cyberattacl. The attack stopped operations of the city's website and municipal IT and digital services. The malware has ben described as South Korean.
Raychat
January 31, 2021
Raychat, a popular Iranian business and social messenger, exposes its entire database (267M+ accounts w/ names, emails, passwords, metadata, encrypted chats etc.), which is then destroyed by a bot attack.
Codecov
January 31, 2021
Codecov online platform for hosted code testing reports and statistics announces that a threat actor had modified its Bash Uploader script, exposing sensitive information in customers
myNewJersey
January 31, 2021
The myNewJersey portal for state employees was victim to what's known as a credential stuffing attack, using compromised login credentials, according to the Office of Information Technology.
Serco
January 31, 2021
•[ ransomware, malware, healthcare ]
Serco, one of the companies involved in the NHS Test and Trace operations, confirms it has been hit by a ransomware attack.
Victor Central School District
January 31, 2021
•[ hack, malware, education ]
A malware attack struck Victor Central School District in New York, closing all in-person classes. All internet services and phones had stopped operating as a result of the attack.
British Mensa
January 31, 2021
•[ hack, misconfiguration ]
British Mensa has had its website hacked after failing to properly secure the data of its 18,000 members.
University of London School of Oriental and African Studies
January 31, 2021
•[ espionage, phishing, education ]
Iranian state aligned actor compromised an University of London webpage to host credential harvesting software and shared the page with particular targets including research experts and journalists focused on the Middle East.
Victor Central School District
January 31, 2021
•[ hack, malware, education ]
The Victor Central School District is hit with a malware attack that has caused all internet services and phones in the district to stop operating.
Raychat
January 31, 2021
•[ hack, technology ]
In January 2021, the now defunct Iranian social media platform Raychat suffered a data breach that exposed 939 thousand unique email addresses. The data included names, IP addresses, browser user agent strings and passwords stored as bcrypt hashes. The data was provided to HIBP by dehashed.com.
Moncler
January 30, 2021
•[ ransomware, malware, retail ]
Italian luxury fashion giant is hit with ransomware, data is sold online.
Undetermined
January 30, 2021
•[ ransomware, finance ]
A US farm suffers ransomware attack from a compromised login credential shutting down its operations.
USCellular
January 30, 2021
•[ hack, technology ]
USCellular has suffered a data breach after hackers gained access to a computer in a retail store and its CRM network.
perl
January 29, 2021
•[ hack, malware, technology ]
The perl.com domain has been taken over by hackers and pointed to an IP address associated with malware campaigns.
UK Research and Innovation
January 29, 2021
•[ ransomware, malware, government ]
The UK Research and Innovation has sustained a cyber attack that has adversely affected several of its web assets and has resulted in data being encrypted by a third party.
Baldwin Wallace University
January 29, 2021
•[ hack, education ]
A cyberattack affected Baldwin Wallace University, cancelling classes and closing their offices.
Bihar Police Subordinate Services Commission (BPSSC)
January 29, 2021
•[ leak, government ]
Researchers from CloudSEK discover a post on a well-known database sharing forum advertising the PII of 500,000 Indian citizens. An analysis of the data shows that the victims are candidates who took a preliminary exam conducted by the Bihar Police Subordinate Commission.
Crisp Regional Health Services
January 29, 2021
•[ ransomware, malware, healthcare ]
Crisp Regional Health Services is the victim of a ransomware attack.
Miss England
January 29, 2021
•[ ransomware, malware ]
Malicious hackers targeted the organizers of Miss England, an English beauty pageant, with ransomware.