-
Stalker Online
May 5, 2020
•
[ hack, technology ]
In May 2020, over 1.3M records from the MMO game Stalker Online were breached. The data included email and IP addresses, usernames and hashed passwords.
-
Bukalapak
May 4, 2020
•
[ leak, retail ]
The data of 13 million users of the e-commerce platform Bukalapak are posted on a dark web forum, despite the company denying the breach.
-
CPC Corporation
May 4, 2020
•
[ ransomware, malware, energy ]
China-linked threat actors Winnti Umbrella have launched a ransomware attack against CPC Corporation, Taiwan's state oil company.
-
ProPath Services, LLC
May 4, 2020
ProPath Services, LLC in Texas has notified patients of a data security breach stemming from compromise of two employees' email accounts. The incident occurred in 2020, but ProPath doesn't state exactly when they first discovered the breach.
-
Algolia
May 3, 2020
•
[ hack, misconfiguration, technology ]
Search service Algolia says it suffered a security breach over the weekend after hackers exploited a well-known vulnerability in the Salt server configuration software to gain access to its infrastructure.
-
Harvest Sherwood Food Distributors
May 3, 2020
•
[ ransomware, malware, retail ]
Food supplier Harvest Sherwood Food Distributors is hit by a REvil ransomware attack.
-
Ghost
May 3, 2020
•
[ hack, malware, technology ]
The blogging platform Ghost is compromised exploiting the Salt vulnerability. The attackers install a cryptominer.
-
Tokopedia
May 3, 2020
•
[ hack, brute-force, retail ]
A hacker sells a database containing the information of 91 million Tokopedia accounts on a dark web market for $5,000. Other threat actors start to crack passwords and share them online.
-
Chronicle
May 3, 2020
•
[ leak, education ]
Chronicle.com, a news source for higher education, is the latest victim to have a database dumped from the ShinyHunters collective (3 million records).
-
Digicert
May 3, 2020
Digicert is compromised as a consequence of the Salt vulnerability.
-
ChatBooks
May 3, 2020
A database with 15 million records belonging to ChatBooks, a photo print service, is put on sale on the dark web.
-
Florida Gulf Coast University
May 3, 2020
•
[ hack, ddos, education ]
A virtual ceremony by Florida Gulf Coast University is disrupted by a DDoS attack.
-
Naughty Dog
May 3, 2020
A security flaw in patches from game developer Naughty Dog give hackers access to unreleased content from the upcoming The Last of Us Part II that was stored in an Amazon S3 bucket.
-
Unacademy
May 3, 2020
Online learning platform Unacademy suffers a data breach after a hacker gains access to their database and starts selling the account information for close to 22 million users.
-
Xen Orchestra
May 3, 2020
•
[ hack, misconfiguration, technology ]
Xen Orchestra, a platform that provides tools to administrate Citrix Hypervisor is also compromised via the Salt vulnerability.
-
LineageOS
May 2, 2020
•
[ hack, technology ]
Hackers breach the main infrastructure of the LineageOS Android, causing a full outage. The attackers exploited a high-severity vulnerability in the open source "Salt" management framework that was disclosed to the public on April 30.
-
Banco BCR
May 1, 2020
•
[ hack, finance ]
Hackers claim to have gained access to the network of Banco BCR, the state-owned Bank of Costa Rica, and stolen 11 million credit card credentials along with other data.
-
-
Sparboe Companies
May 1, 2020
•
[ ransomware, malware, manufacturing ]
The threat group Maze publishes what it claims is data stolen from Sparboe Companies, a Minnesota egg supplier during a ransomware attack.
-
York University
May 1, 2020
•
[ hack, education ]
York University suffers a "serious" cyber attack.