Full List

Search

Recent Breaches

• Zoosk (2020) January 12, 2020 In January 2020, the online dating service Zoosk suffered a data breach which was subsequently shared extensively across online hacking communities. The breach contained 24 million unique email addresses alongside extensive personal information including genders, sexualities, dates of birth, physical attributes such as height and weight, religions, ethnicities and political views. The breach also allegedly exposed MD5 password hashes, although the data circulating in hacking circles had this field nulled out. The breach was provided to HIBP by breachbase.pw.
• City of Ozark January 10, 2020 • [ hack, government ] Hackers from Anonymous Iran claim to have defaced the website of city of Ozark.
• Panama-Buena Vista Union School January 10, 2020 • [ ransomware, malware, education ] Panama-Buena Vista Union School District is hit with a ransomware attack.
• PIH Health January 10, 2020 PIH Health notifies almost 200,000 patients whose protected health information was in employee email accounts that were compromised.
• Los Angeles County January 10, 2020 • [ social, phishing, education ] Los Angeles County confirms it was the target of a phishing attack last month, which staff detected and contained before it exposed any county resident data.
• Manor Independent School District January 10, 2020 • [ financial, phishing, education ] Manor Independent School District announces that email scammers had fleeced the District out of $2.3 million.
• The Center for Facial Restoration January 10, 2020 The Center for Facial Restoration reveals to have been victim of hack back in November 2019, with the attackers threatening to release the patients' data.
• Boing Boing January 10, 2020 • [ hack, malware, technology ] The popular Boing Boing blog is hacked by an unknown party who plants malicious code into the site's WordPress theme. Users visiting the site from desktop computers are redirected to a fake download page for an Adobe Flash update.
• Website collecting donations for the victims of the Australia bushfires January 10, 2020 • [ financial, malware, healthcare ] Researchers from Malwarebytes discover that attackers compromised a website collecting donations for the victims of the Australia bushfires and injected ATMZOW, a malicious script that steals the payment information of the donors.
• American Electric Utilities January 9, 2020 • [ espionage, energy ] Researchers from Dragos reveal that a state-sponsored group affiliated to Iran called Magnallium has been probing American electric utilities for the past year.
• Bartlett Public Library District January 9, 2020 • [ ransomware, malware, government ] The Bartlett Public Library District's computer systems recovers from a ransomware attack occurred on Saturday, November 30.
• City of Dawson Creek January 9, 2020 • [ ransomware, hack, malware ] The City of Dawson Creek says its computer systems were hacked in an apparent ransomware attack.
• City of Dunwoody January 9, 2020 • [ hack, government ] The City of Dunwoody reveals to have been hit by a cyber attack during the Christmas Eve.
• btyDental January 9, 2020 • [ ransomware, malware, healthcare ] btyDental notifies patients after suffering a ransomware attack discovered on November 2019.
• Albany International Airport January 9, 2020 • [ ransomware, malware ] Albany International Airport's staff announces that the New York airport's administrative servers were hit by Sodinokibi Ransomware following a cyberattack that took place over Christmas.
• US financial entity January 8, 2020 The FBI says that unidentified threat actors have used the CVE-2019-11510 Pulse Secure VPN flaw "to exploit a notable US financial entity's research network since August 2019.
• Kuwait State News Agency January 8, 2020 • [ hack, government ] Kuwait state news agency says its Twitter was hacked to spread misinformation about US withdrawal.
• US municipal government January 8, 2020 • [ hack, misconfiguration, government ] The FBI says that also a US municipal government was breached via the CVE-2019-11510 Pulse Secure VPN flaw.
• City of Bend January 7, 2020 • [ hack, government ] The City of Bend is the latest victim of the Click2Gov breach.
• City of Las Vegas January 7, 2020 • [ hack, phishing, government ] The City of Las Vegas is hit by a cyber attack via a malicious email.