Full List

Search

Recent Breaches

• Mashable June 1, 2020 • [ leak ] In approximately mid-2020, Mashable suffered a data breach that subsequently turned up publicly in November 2020. The data included 1.4 million unique email addresses along with names, genders, expired auth tokens, physical locations, links to social media profiles and days and months of birth. The data was provided to HIBP by dehashed.com.
• Coincheck May 31, 2020 • [ hack, phishing, finance ] Japanese cryptocurrency exchange Coincheck says hackers took control over its account at Oname.com, a local domain registrar and hijacked one of its domain names, which they later used to contact some of its customers.
• Neiman Marcus May 30, 2020 • [ leak, retail ] Neiman Marcus suffers a data breach compromising personal information of approximately 4.6 million customers.
• Minneapolis Police Department May 30, 2020 • [ hack, ddos, government ] Anonymous takes down the Minneapolis Police Department website in retaliation for the murder of George Floyd.
• Excis May 30, 2020 • [ ransomware, malware, technology ] Sekhmet ransomware operators claim to have hit an international IT firm, Excis.
• Airlink International UAE May 30, 2020 • [ leak, automotive ] Cybersecurity researchers from Cyble have found a threat actor sharing leaked data of Airlink International UAE for free on two platforms on the dark web.
• Amtrak May 29, 2020 The National Railroad Passenger Corporation (Amtrak) discloses a data breach that may have resulted in the compromise of customer personally identifiable information (PII). The data breach was discovered on April 16, 2020 and was carried out via compromised credentials.
• Conduent May 29, 2020 • [ ransomware, malware, technology ] The Maze Ransomware operators claim to have successfully attacked business services giant Conduent, where they stole unencrypted files and encrypted devices on their network.
• Department of Household Registration of Taiwan May 29, 2020 Researchers from Cyble discover a database containing details of over 20 million Taiwanese citizens on the dark web. The data was stolen from the Ministry of the Interior's Department of Household Registration.
• Cisco May 28, 2020 Cisco discloses a security breach that impacted a small part of its backend infrastructure: hackers used a vulnerability in the SaltStack software package, which Cisco bundles with some products, to gain access to six servers.
• Stark Summit Ambulance May 28, 2020 • [ leak, healthcare ] Stark Summit Ambulance suffered a data breach in May 2020 which exposed personal and protected health information.
• City government systems in Minneapolis May 28, 2020 • [ hack, ddos, government ] City government systems in Minneapolis are taken down by a DDoS attack.
• Michigan State University May 28, 2020 • [ ransomware, malware, education ] The operators of the NetWalker (Mailto) ransomware announce that they've infected the network of Michigan State University.
• telwizjarepublika May 27, 2020 Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
• City of Weiz May 27, 2020 • [ ransomware, malware, government ] The Austrian City of Weiz is hit by the NetWalker ransomware.
• LiveJournal May 27, 2020 • [ leak, hack, technology ] Blogging platform LiveJournal appears to have suffered a security breach in 2014, and multiple hackers are selling the company's user database on the dark web and on hacking forums (26 million users).
• zary-zagan.regionalna.pl May 27, 2020 • [ influence campaign, disinformation, website compromise ] Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
• Arbonne International May 26, 2020 Arbonne International exposes the personal information and credentials of thousands after its internal systems were breached by an unauthorized party.
• Preen.Me May 25, 2020 In May 2020, social media marketing company Preen.Me was the target of a ransom attack that resulted in hundreds of thousands of records being publicly posted. Over 236k unique email addresses were exposed in the attack alongside names, usernames and links to social media profiles.
• suxx May 24, 2020 • [ leak, technology ] Researchers from Cyble discover the databases of three hacking forums Nulled.ch, Sinfulsite.com, and suxx.to leaked online.