-
Undisclosed pharmaceutical company
September 25, 2020
•
[ espionage, phishing, healthcare ]
Researchers from Kaspersky reveal details on a COVID-19-themed campaign, carried out by the North Korean actor Lazarus Group, and targeting a pharmaceutical company.
-
University of Leeds
September 25, 2020
•
[ ransomware, malware, education ]
The University of Leeds is among the victims of the Blackbaud ransomware attack.
-
University of North Florida
September 25, 2020
•
[ ransomware, malware, education ]
The University of North Florida is among the victims of the Blackbaud ransomware attack.
-
University of South Wales
September 25, 2020
•
[ ransomware, malware, education ]
The University of South Wales is among the victims of the Blackbaud ransomware attack.
-
University of Strathclyde
September 25, 2020
•
[ ransomware, malware, education ]
The University of Strathclyde is among the victims of the Blackbaud ransomware attack.
-
Vermont Foodbank
September 25, 2020
•
[ ransomware, malware, technology ]
The Vermont Foodbank is among the victims of the Blackbaud ransomware attack.
-
Eskimi
September 25, 2020
In late 2020, the AdTech platform Eskimi suffered a data breach that exposed 26M records with 1.2M unique email addresses. The data included usernames, dates of birth, genders and passwords stored as unsalted MD5 hashes.
-
Sam's Club
September 24, 2020
•
[ hack, phishing, retail ]
Sam's Club has been notifying customers that may have been victims of credential stuffing and phishing attacks in mid-September.
-
-
Magyar Telekom
September 24, 2020
•
[ hack, technology ]
A powerful cyberattack has targeted Hungarian telecommunication company Magyar Telekom.
-
OTP Bank
September 24, 2020
•
[ hack, finance ]
A powerful cyberattack has targeted Hungarian banking institutions. OTP Bank is one of the victims.
-
Syracuse University
September 24, 2020
•
[ hack, leak, phishing ]
The names and Social Security numbers of about 9,800 Syracuse University students, alumni and applicants have been exposed after someone gained unauthorized access to an employee's email account.
-
Fragomen, Del Rey, Bernsen & Loewy, LLP
September 24, 2020
Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP has disclosed a data breach. The security breach exposed current and former Google employees' personal information after an unauthorized third party gained access to a single file containing personal information relating to I-9 employment verification services.
-
-
Scouts Victoria
September 24, 2020
•
[ social, phishing, education ]
Scouts Victoria warns about a phishing incident that occurred in late July and early August.
-
Unnamed US federal agency
September 24, 2020
•
[ hack, government ]
A hacker has gained access and exfiltrated data from a federal agency, the Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday. The name of the hacked federal agency, the date of the intrusion, or any details about the intruder, such as an industry codename or state affiliation, were not disclosed.
-
Unnamed US federal agency
September 24, 2020
•
[ espionage, malware, government ]
Russian hackers used compromised credentials to install malware and ultimately steal files from computers at an unnamed US agency.
-
RaidForums
September 24, 2020
In May 2023, 478k user records from the now defunct hacking forum known as "RaidForums" was posted to another hacking forum. The data dated back to September 2020 and included email addresses, usernames, dates of birth, IP addresses and passwords stored as Argon2 hashes. The data was provided to HIBP by a source who requested it be attributed to "white_peacock@riseup.net".
-
Tyler Technologies
September 23, 2020
•
[ ransomware, malware, government ]
Tyler Technologies, a leading government technology services provider has suffered a ransomware attack.
-
Ukraine National Police
September 23, 2020
•
[ hack, ddos, government ]
A cyberattack takes down the website of the Ukraine National Police website.
