-
Sheffield Hallam University
July 16, 2020
•
[ leak, misconfiguration, education ]
The Sheffield Hallam University confirms that it is dealing with a data breach linked to the software provider Blackbaud.
-
University of North Carolina System
July 16, 2020
•
[ hack, malware, education ]
The University of North Carolina System is another victim of the Blackbaud hack.
-
Blackbaud
July 15, 2020
•
[ ransomware, malware, technology ]
Blackbaud, a cloud software provider specializing in fundraising suites for charities and educational institutions, discloses a ransomware attack that occurred in May, 2020.
-
European Space Agency
July 15, 2020
•
[ hack, government ]
Hackers from the Ghost Squad deface a domain of the European Space Agency (ESA): business.esa.int.
-
Hong Kong Catholic Church
July 15, 2020
•
[ espionage, phishing, government ]
China's government hackers have targeted members of the Hong Kong Catholic Church in a series of spear-phishing operations traced back to May this year.
-
ArbiterSports
July 15, 2020
•
[ ransomware, malware, technology ]
ArbiterSports, the official software provider for the NCAA and many other leagues, says that the details of 540,000 referees were taken in a failed ransomware attack.
-
Gravitas
July 15, 2020
An Auckland research firm, Gravitas, suffers a hack and loses the information provided by the NZ Police. As a consequence the police decides to close the contract.
-
Citrix third-party
July 15, 2020
•
[ leak, misconfiguration, technology ]
An actor sells what they claim to be a database with information on 2,000,000 Citrix customers on the dark web. An official statement by the company reveals that the database has been obtained from a third-party.
-
Twitter
July 15, 2020
A number of high profile Twitter accounts, including Bill Gates, Elon Musk and Apple, are hijacked to promote a bitcoin scam. The author of the hack is arrested by the FBI two weeks later.
-
Milan Malpensa Airport
July 14, 2020
Hackers from the LulzSecurityITA collective dump the list of 23 databases from the airports of Milan Linate and Milan Malpensa.
-
Roger Torrent
July 14, 2020
•
[ espionage, malware, government ]
Roger Torrent, the speaker of the Catalan parliament, and at least two other pro-independence supporters, have reportedly been told their phones were targeted last year using the 'Pegasus' spyware.
-
Wattpad
July 14, 2020
•
[ leak, technology ]
An allegedly stolen Wattpad database containing 270 million records is being sold in private sales for over $100,000 and offered for free on hacker forums.
-
-
UK ticketing provider
July 14, 2020
Security researchers from KELA discover a database containing millions of emails and usernames up for sale on the dark web, linked to a well-known UK ticketing provider.
-
WiziShop
July 14, 2020
•
[ leak, retail ]
In July 2020, the French e-commerce platform WiziShop suffered a data breach. The breach exposed 18GB worth of data including names, phone numbers, dates of birth, physical and IP addresses, SHA-1 password hashes and almost 3 million unique email addresses. The data was provided to HIBP by a source who requested it be attributed to "pom@pompur.in".
-
Argenta
July 13, 2020
•
[ financial, malware, finance ]
Antwerp-based savings bank Argenta shuts down 143 ATM machines after falling victim to what is believed to be Belgium's first jackpotting attacks.
-
DataViper
July 13, 2020
A hacker going by the handle of NightLion claims to have breached the backend servers belonging to DataViper, a cyber security firm, and dumps 8,225 databases.
-
Haldiram's Snacks
July 12, 2020
•
[ ransomware, malware, manufacturing ]
Haldiram's Snacks has disclosed that the company was attacked with ransomware in July. The attackers also reportedly exfiltrated sensitive information including financial data.
-
Cashaa
July 11, 2020
•
[ hack, finance ]
U.K.-based cryptocurrency exchange Cashaa reports that hackers stole more than 336 Bitcoin (BTC) and ceases all the crypto-related transactions.
-
Dunzo
July 11, 2020
Indian delivery service Dunzo said it suffered a data breach that left customer data including email IDs and phone numbers exposed, after attackers accessed one of its databases.
