-
A telecom company in the Middle East
July 22, 2020
•
[ espionage, malware, technology ]
Researchers from Palo Alto Networks discover a series of cyberattacks on a telecom company in the Middle East signaling the return of the OilRig APT. The attacks also revealed a revised backdoor tool in the group's arsenal, called RDAT.
-
SUNY Erie Community College
July 22, 2020
•
[ hack, malware, education ]
About 50 computers at SUNY Erie Community College are disabled by a malware attack.
-
Twilio
July 22, 2020
Twilio discloses that its TaskRouter JS SDK was compromised by attackers after they gained access to one of its misconfigured Amazon AWS S3 buckets which left the SDK's path publicly readable and writable for roughly five years, since 2015.
-
Amphastar Pharmaceuticals
July 21, 2020
•
[ ransomware, malware, healthcare ]
The DoppelPaymer ransomware threat actors posted data Amphastar Pharmaceuticals data that had been stolen in a May attack.
-
MyHeritage
July 21, 2020
MyHeritage, a genealogy website based in Israel, announces that some of its users had been subjected to a phishing attack to obtain their log-in details for the site, apparently targeting email addresses obtained in the attack on GEDmatch just two days before.
-
DeepSource
July 21, 2020
•
[ social, phishing, technology ]
DeepSource resets the user logins after an employee falls for the Sawfish phishing campaign.
-
Pepperstone
July 21, 2020
Pepperstone sends out an email to clients, alerting them of a data security incident in which third parties are reaching out to the broker's clients and falsely claiming to be Pepperstone.
-
Coinbase
July 21, 2020
Coinbase reveals that it stopped scammers from stealing an extra $280,000 of cryptocurrency during the Twitter hack which affected dozens of high profile accounts as well Coinbase's own account.
-
-
University of Utah Health
July 20, 2020
•
[ social, phishing, healthcare ]
University of Utah Health notifies 10,000 patients after it suffered a phishing attack.
-
LiveAuctioneers
July 20, 2020
Researchers claim to have found evidence that cybercriminals are offering for sale a database containing the personal details of 3.4 million users of LiveAuctioneers, an online art and antiques auction website, as well as three million cracked passwords.
-
GEDMatch
July 19, 2020
More than a million DNA profiles are available to search on GEDMatch after the genealogy portal is hacked.
-
Telecom Argentina
July 18, 2020
•
[ ransomware, malware, technology ]
The REvil ransomware gang infects the internal network of Telecom Argentina, and asks for a $7.5 million ransom demand to unlock encrypted files.
-
JM Bullion
July 17, 2020
•
[ financial, malware, retail ]
Gold seller JM Bullion was the victim of a MageCart-style attack for five months.
-
Agricultural water pumps in upper Galilee
July 17, 2020
•
[ hack, energy ]
Local news outlet in Israel report that the agricultural water pumps in upper Galilee were hit by a cyber attack back in June.
-
La Casa de Salud
July 17, 2020
•
[ hack, healthcare ]
La Casa de Salud discloses an email account breach that was detected on July 17, 2020.
-
Lorien Health Services
July 17, 2020
•
[ ransomware, malware, healthcare ]
Lorien Health Services announces that it was the victim of a ransomware incident in early June. Data was stolen and then encrypted during the incident.
-
Somerset Berkley Regional High School
July 17, 2020
•
[ ransomware, malware, education ]
Somerset Berkley Regional High School was a victim of a ransomware attack in July.
-
Water pumps in the province of Mateh Yehuda
July 17, 2020
•
[ hack, energy ]
A second attack hit water pumps in the central province of Mateh Yehuda.
-
Utah Gun Exchange
July 17, 2020
•
[ hack, misconfiguration, retail ]
In July 2020, the Utah Gun Exchange website suffered a data breach which included several other associated websites. In total, 235k unique email addresses were exposed before being traded online alongside names, usernames, genders, IP addresses and password hashes. The data was provided to HIBP by breachbase.pw.
