Bletchley Park Trust
August 13, 2020
The Bletchley Park Trust is another victim hit in Blackbaud breach.
Nykaa
August 13, 2020
Nykaa, an Indian retail seller of beauty, wellness and fashion, loses Rs 62 lakh (around USD 85,000) after the email of an Italian supplier is spoofed.
Israeli defense industry
August 12, 2020
•[ espionage, government ]
Israel claimed Wednesday that it had thwarted a cyberattack by a North Korea-linked hacking group on its classified defense industry. However, security researchers at ClearSky said the hackers penetrated the computer systems and were likely to have stolen a large amount of classified data.
Atrium Health
August 12, 2020
•[ ransomware, malware, healthcare ]
Atrium Health joins the list of the victims of the Blackbaud ransomware attack.
NHS
August 12, 2020
•[ social, phishing, healthcare ]
A report reveals that NHS staff were hit with a wave of malicious email attacks at the height of the COVID-19 pandemic, with doctors, nurses and other key workers reporting over 40,000 spam and phishing attacks between March and the first half of July.
RailYatri
August 12, 2020
•[ leak, misconfiguration, technology ]
One of India's most popular travel booking hubs has suffered a significant data breach that led to the loss of over 43GB of data as a result of a Meow bot attack. Preceding the attack, the affected Elastic search server was left publicly exposed for several days.
Archer High School
August 12, 2020
•[ hack, misconfiguration, education ]
A virtual class in Gwinnett County's Archer High School gets Zoom-bombed by two men.
Kariyer
August 12, 2020
•[ leak, misconfiguration, technology ]
A file containing the information of 50,000 members of Kariyer.net is found on the web by LVKK, the Turkish data protection authority.
Latin School of Chicago
August 12, 2020
•[ ransomware, malware, education ]
The Latin School of Chicago is among the victims of the Blackbaud ransomware attack.
Flintshire Council
August 12, 2020
•[ hack, government ]
Personal information of people who left comments about local planning issues on Flintshire council's website is hacked.
Pace Center for Girls
August 12, 2020
•[ hack, malware, education ]
The Pace Center for Girls has been hit by a data breach in the aftermath of the Blackbaud hack.
Adit
August 11, 2020
•[ hack, misconfiguration, healthcare ]
An unsecured database with 3.1 million patients' details is exposed by a medical software company and subsequently destroyed by a "meow" attack.
Luminate Education Group (LEG)
August 11, 2020
•[ hack, education ]
Luminate Education Group (LEG) is hit by a cyber attack, affecting Leeds City College, Keighley College, Harrogate College, Leeds Sixth Form College and University Centre Leeds.
The Canadian Department of Justice
August 11, 2020
•[ hack, malware, government ]
Hackers have managed to infiltrate the Canadian Justice Department's system in August, and send Emotet malware to citizens who traded with these addresses.
ShockGore
August 11, 2020
•[ leak, misconfiguration, technology ]
In August 2020, the website for sharing graphic videos and images of gore and animal cruelty suffered a data breach. The breach exposed 74k unique email addresses alongside usernames, IP addresses, genders and unsalted SHA-1 password hashes. Private messages were also exposed, many containing requests for material of a depraved nature. The data was provided to HIBP by a source who requested it be attributed to "white_peacock@riseup.net".
Jefit
August 11, 2020
•[ hack, misconfiguration, technology ]
In August 2020, the workout tracking app Jefit suffered a data breach. The data was subsequently sold within the hacking community and included over 9 million email and IP addresses, usernames and passwords stored as either vBulletin or argon2 hashes. Several million cracked passwords later appeared in broad circulation.
Olympia House Rehab
August 10, 2020
•[ ransomware, malware, healthcare ]
Olympia House Rehab is hit by Netwalker ransomware.
The Center for Fertility and Gynecology
August 10, 2020
•[ ransomware, malware, healthcare ]
The Center for Fertility and Gynecology is hit by Netwalker ransomware.
Undisclosed construction company
August 10, 2020
•[ ransomware, malware ]
The gang behind the Avaddon ransomware launches a data leak site to extort victims and published the data of a construction company.
Ashley County Medical Center
August 10, 2020
•[ insider, misconfiguration, healthcare ]
Ashley County Medical Center is investigating a former employee who they claim inappropriately accessed medical records. It appears that the information was viewed out of curiosity and has not been shared with a third-party.