-
Robert Dyas
April 26, 2020
•
[ financial, malware, retail ]
Robert Dyas notifies customers to have been hit by a malicious script in the payment page between 7-30 March.
-
Huiying Medical Technology
April 25, 2020
•
[ leak, technology ]
Researchers from Cyble identify a threat actor attempting to sell Huiying Medical Technology's source code for AI-assisted COVID-19 detection and experimental data.
-
Illinois Valley Community College
April 24, 2020
•
[ ransomware, malware, education ]
Illinois Valley Community College is hit with a ransomware attack. In September the Pysa threat actors who carried out the attack published sensitive IVCC information for not paying the ransom.
-
-
CHI St. Luke's Health-Memorial Lufkin
April 23, 2020
•
[ social, phishing, education ]
CHI St. Luke's Health-Memorial Lufkin notifies of a phishing incident that occurred on April 23, 2020.
-
Water supply and treatment facilities in Israel
April 23, 2020
The Israeli National Cyber-Directorate (INCD) warns that hackers have targeted its water supply and treatment facilities. The agency is urging personnel at companies active in the energy and water sectors to change passwords for all internet-connected systems. Iran is suspected to be behind the attack.
-
GoDaddy
April 23, 2020
GoDaddy notifies some of its customers that an unauthorized party used their web hosting account credentials to connect to their hosting account via SSH.
-
-
Wuhan government
April 22, 2020
•
[ espionage, phishing, government ]
Vietnamese hackers have sent spear-phishing messages to the government of the Wuhan province as part of a campaign to gather information about China's COVID-19 response.
-
podlasie24
April 22, 2020
•
[ espionage, phishing, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
-
Chinese Ministry of Emergency Management
April 22, 2020
•
[ espionage, phishing, government ]
Vietnamese hackers have sent spear-phishing messages to the China's Ministry of Emergency Management as part of a campaign to gather information about China's COVID-19 response.
-
Poland's War Studies University
April 22, 2020
•
[ hack, government, education ]
Hackers breached Poland's War Studies University's website and posted a fake letter from the university's commander, urging Polish soldiers "to fight against the American occupation."
-
Valve
April 22, 2020
•
[ leak, technology ]
The source code of Valve's Team Fortress 2 and Counter-Strike: Global Offensive games was leaked.
-
Service NSW
April 22, 2020
•
[ social, phishing, government ]
Service NSW reveals to have fallen victim to a phishing attack occurred on April 22.
-
prawy.pl
April 22, 2020
•
[ influence campaign, hacking, anti-NATO narratives ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
-
Whisky Auctioneer
April 21, 2020
•
[ hack, ddos, retail ]
An online auction of rare whiskies is postponed indefinitely following a DDoS attack.
-
City of Torrance
April 21, 2020
•
[ ransomware, malware, government ]
The City of Torrance of the Los Angeles metropolitan area is hit by the DoppelPaymer Ransomware.
-
-
Chartered Institute for Securities and Investments (CISI)
April 20, 2020
•
[ financial, malware, finance ]
The Chartered Institute for Securities and Investments (CISI) confirms that some of its members may have had their financial information stolen after "malicious code" was inserted on its website.
-
Genworth Financial
April 20, 2020
Fortune 500 insurance holding company Genworth Financial discloses a data breach after an unauthorized party gained access to insurance agents' online accounts using compromised login credentials. The breach was discovered by Genworth on April 20.