-
W3layouts
October 28, 2020
•
[ leak, technology ]
A threat actor is selling account databases containing an aggregate total of 34 million user records that they claim were stolen from seventeen companies during data breaches including W3layouts.com.
-
Wyckoff Heights Medical Center
October 28, 2020
•
[ ransomware, malware, education ]
Wyckoff Heights Medical Center in Brooklyn has suffered a Ryuk ransomware attack.
-
Wongnai
October 28, 2020
In October 2020, 17 previously undisclosed data breaches appeared for sale including the Thai restaurant, hotel and attraction finding service, Wongnai. The breach exposed almost 4M unique customer records from some time during 2020 along with names, phone numbers, links to social media profiles and passwords stored as MD5 hashes. The data was self-submitted to HIBP by Wongnai.
-
Florida family
October 27, 2020
A woman from Florida has been arrested after allegedly hacking into the home camera system of a family member as part of an extortion attempt.
-
Online Voter Registration System of the state of Alaska
October 27, 2020
A cyberattack on the Online Voter Registration System of the state of Alaska exposed the information of 113,000 voters. The attack happened in early September.
-
Absa
October 27, 2020
•
[ insider, finance ]
South African financial services group Absa has revelaed that one of its employees sold the personal information of 200,000 clients to third parties.
-
Japan's Nuclear Regulation Authority
October 27, 2020
•
[ hack, government ]
Japan's Nuclear Regulation Authority has temporarily disabled its email systems after detecting an unknown external party manged to gain unauthorized access to its networks.
-
Undisclosed government health ministry
October 27, 2020
•
[ espionage, malware, healthcare ]
Researchers from Kaspersky reveal details on a COVID-19-themed campaign, carried out by the North Korean actor Lazarus Group, and targeting a health ministry.
-
Five Points Eye Care
October 27, 2020
•
[ social, phishing, healthcare ]
Five Points Eye Care reports a phishing attack that occurred in October 2020.
-
Santander
October 27, 2020
PagoFX, Santander's international money transfer startup, has been hacked and its database schemas, infrastructure docs, digital risk assessments, customer security checsk, and Salesforce training material have reportedly been put up for sale on an underground hacking forum. Santander has downplayed the incident and stated that the leak is mostly sample source code.
-
CMC Ravenna
October 26, 2020
•
[ ransomware, malware ]
CMC in Ravenna has been compromised by NetWalker ransomware.
-
Harvest Finance
October 26, 2020
•
[ financial, hack, finance ]
A hacker has stolen roughly $24 million worth of cryptocurrency assets from decentralized finance service'Harvest Finance, a web portal that lets users invest cryptocurrencies and then farm the price variations for small profit yields. In response, the company put out a $100,000 bounty for help in contacting the attacker.
-
Hanover Chamber of Crafts
October 26, 2020
•
[ ransomware, malware, education ]
The Hanover Chamber of Crafts has been breached by the REvil threat actors. However, data on the network does not appear to be encrypted.
-
Nando's
October 26, 2020
•
[ hack, retail ]
British Nando's customers have had their accounts compromised with the hackers hijacking their accounts to place largage orders.
-
Psykoterapiakeskus Vastaamon (Psychotherapy Center Vastaamo)
October 25, 2020
•
[ ransomware, healthcare ]
Vastaamo, a company that offers psychotherapy to thousands of patients across Finland says it's been the victim of a data breach, with the personal information of customers held for ransom. In addition to extorting the company, the attacker has contacted individual patients to demand payment for their data.
-
Players of the 'Among Us' Android game
October 25, 2020
•
[ hack, ddos, technology ]
Players of the 'Among Us' are spammed with ads from a player named Eris Loris, rendering the game useless.
-
Century 21
October 24, 2020
•
[ insider, misconfiguration, retail ]
Hector Navarro, a former Human Resources systems administrator at Century 21's Manhattan department store, has been indicted for breaching the company's network to steal and alter data after resigning in October 2019.
-
Press Trust of India
October 24, 2020
•
[ ransomware, malware, technology ]
The Press Trust of India's computer servers suffered a massive ransomware attack, disrupting operations and the delivery of news to hundreds of subscribers across India for several hours.
-
Centerstone
October 24, 2020
•
[ hack, phishing, healthcare ]
Centerstone, a provider of substance abuse and mental health services, is notifying employees and patients of a breach. The investigation into the "IT security incident" started after an employee for Centerstone of Tennessee, Inc. noticed "unusual activity" involving their email account.
-
Shionogi & Co.
October 23, 2020
•
[ ransomware, malware, healthcare ]
Japanese pharmaceutical firm Shionogi & Co. said Thursday that its Taiwanese subsidiary was hit by a cyberattack earlier this month leading to a data breach. The attack was announced by the REvil ransomware group.