-
Tamodo
February 28, 2020
In February 2020, the affiliate marketing network Tamodo suffered a data breach which was subsequently shared on a popular hacking forum. The incident exposed almost 500k accounts including names, email addresses, dates of birth and passwords stored as bcrypt hashes. Tamodo failed to respond to multiple attempts to report the breach via published communication channels.
-
Democratic National Committee
February 27, 2020
•
[ social, phishing, government ]
The Democratic National Committee warns its presidential candidates to be cautious after Bernie Sanders' campaign reported that an "impersonator" with a domain registered overseas had posed as one of its staffers and sought conversations with members of at least two other campaigns.
-
-
Kenneth Cole Productions
February 27, 2020
•
[ ransomware, malware, manufacturing ]
The operators behind the Sodinokibi Ransomware (AKA Revil) publish the download links to files containing what they claim is financial and work documents, as well as customers' personal data stolen from Kenneth Cole Productions.
-
OKEx
February 27, 2020
•
[ hack, ddos, finance ]
OKEx and Bitfinex suffered simultaneous distributed denial of service (DDoS) attacks.
-
Barbara Corcoran
February 27, 2020
Barbara Corcoran, a renowned real-estate broker and business expert, admits she lost $380,000 via a BEC scam.
-
AnimeGame
February 27, 2020
•
[ hack, technology ]
In February 2020, the gaming website AnimeGame suffered a data breach. The incident affected 1.4M subscribers and exposed email addresses, usernames and passwords stored as salted MD5 hashes. The data was subsequently shared on a popular hacking forum and was provided to HIBP by dehashed.com.
-
Rady's Children's Hospital
February 26, 2020
•
[ leak, misconfiguration, healthcare ]
Rady's Children's Hospital notifies patients whose data were accessed via an "open port" on June 2019, and January 2020.
-
Southern Water
February 26, 2020
•
[ social, phishing, energy ]
British utility Southern Water is the victim of a phishing attack, resulting in a shutdown of some of the company's systems.
-
Bretagne Tcom
February 26, 2020
•
[ ransomware, hack, malware ]
Cloud services provider Bretagne T l com is hacked by the threat actors behind the DoppelPaymer Ransomware using CVE-2019-19781.
-
Sachs Sax Caplan, P.L.
February 26, 2020
•
[ hack ]
Sachs Sax Caplan, P.L. announces that an unauthorized third-party has gained access to certain systems and email accounts.
-
Hutt Valley High School
February 25, 2020
Hutt Valley High School reveals that it was hit with a cyber attack.
-
Advocate Aurora Health
February 25, 2020
•
[ phishing, healthcare ]
The personal information of some current and former Advocate Aurora Health employees, including their Social Security numbers and bank accounts, might have been compromised in an email phishing campaign.
-
Clearview AI
February 25, 2020
Clearview AI discloses to its customers that an intruder "gained unauthorized access" to its list of customers, to the number of user accounts those customers had set up, and to the number of searches its customers have conducted.
-
-
NRC Health
February 25, 2020
•
[ ransomware, malware, healthcare ]
NRC Health discloses that it was hit by a ransomware attack that took place on February 11.
-
Overlake Medical Center & Clinics
February 25, 2020
•
[ social, phishing, healthcare ]
Overlake Medical Center & Clinics reveals to have been hit by a phishing attack from Dec. 6 to 9, 2019.
-
Gadsden Independent School District
February 25, 2020
•
[ ransomware, malware, education ]
Gadsden Independent School District (GISD) shuts down its internet and communication systems, after a RYUK ransomware attack.
-
-
Ordnance Survey
February 24, 2020
•
[ hack, government ]
A hacker stole the personal data of 1,000 employees of the Ordnance Survey, the government-owned mapping agency for Britain. The breach occurred on January this year.
