Full List

Search

Recent Breaches

• InterMed November 4, 2019 • [ hack, phishing, healthcare ] Healthcare provider InterMed informs about 30,000 patients that some of their PHI has been involved in a data breach, after an employee's email account was compromised between September 4 and September 6.
• Lincoln County School District November 4, 2019 • [ ransomware, malware, education ] Lincoln County School District is hit by a ransomware attack
• PEXSuperstore November 4, 2019 • [ financial, malware, retail ] Researchers from PerimeterX reveal that PEXSuperstore.com is the latest victim of a Magecart attack (simultaneously by two different criminal groups).
• Sociedad Espan (Cadena SER) November 4, 2019 • [ ransomware, malware, technology ] A targeted ransomware attack takes down the network of the radio company Sociedad Espan (Cadena SER).
• Everis November 4, 2019 • [ ransomware, malware, technology ] A targeted ransomware attack takes down the network of Everis, a major IT services and consulting subsidiary of Japan-based global communications company NTT.
• Tejasswi Prakash November 4, 2019 • [ hack ] Tejasswi Prakash's WhatsApp account is hacked and the attacker uses the hacked account to make vulgar video calls.
• Government of Nunavut November 2, 2019 • [ ransomware, malware, government ] A ransomware attack cripples essential electronic communications within the Government of Nunavut.
• U.S. Virgin Islands Water and Power Authority (WAPA) November 1, 2019 • [ hack, misconfiguration, government ] The U.S. Virgin Islands Water and Power Authority is the latest victim of a new Click2Gov Breach.
• Vedantu November 1, 2019 • [ leak, education ] The Indian interactive online tutoring platform Vedantu suffered a data breach which exposed the personal data of 687k users.
• Brooklyn Hospital Center November 1, 2019 • [ ransomware, malware, healthcare ] The Brooklyn Hospital Center reveals that a ransomware attack occurred in late July caused permanent loss of some patient's data.
• Universarium November 1, 2019 • [ leak, misconfiguration, education ] In approximately November 2019, the Russian "Remote preparatory faculty for IT specialties" Universarium suffered a data breach. The incident exposed 565k email addresses and passwords in plain text. Universarium did not respond to multiple attempts to make contact over a period of many weeks. The data was provided to HIBP by dehashed.com.
• Benchmark November 1, 2019 • [ hack, misconfiguration, technology ] In November 2019, the Serbian technology news website Benchmark suffered a breach of its forum that exposed 93k customer records. The breach exposed IP and email addresses, usernames and passwords stored as salted MD5 hashes. A forum administrator subsequently advised that the breach was due to the forum previously running on an outdated vBulletin instance. The data was provided to HIBP by a source who requested it be attributed to "ZAN @ BF".
• IndiHome November 1, 2019 • [ leak, technology ] In mid-2021, reports emerged of a data breach of Indonesia's telecommunications company, IndiHome. Over 26M rows of data alleged to have been sourced from the company was posted to a popular hacking forum and contained 12.6M unique email addresses alongside names, IP addresses, genders and geographic locations. The most recent data was stamped as being recorded in November 2019.
• Perth Anaesthetic Group October 31, 2019 Perth Anaesthetic Group is hacked: criminals access patient information and several patients are sent fake invoices from the attackers demanding payments.
• Utah Valley Eye Center October 31, 2019 • [ hack, healthcare ] Hackers access the Utah Valley Eye Center third-party portal (DemandForce) that reminds patients of scheduled appointments and send emails to inform patients they had received payment from PayPal. The incident occurred on June 18, 2018.
• Watertown School District October 31, 2019 • [ ransomware, malware, education ] Watertown School District is hit by a ransomware attack.
• Centre1 October 31, 2019 Unit 02616 of Uzbekistan's National Security Service used FinFisher, a German spyware, to attack dissidents. Among the targets is Centre1 a regional news outlet that reports on the Uzbek government.
• Palestine Chronicle October 31, 2019 • [ espionage, malware, technology ] Unit 02616 of Uzbekistan's National Security Service used FinFisher, a German spyware, to attack dissidents. Among the targets is the Palestine Chronicle a regional news outlet that reports on the Uzbek government.
• Winamax October 31, 2019 • [ hack, ddos ] Winamax is hit by a DDoS attack.
• Eltuz October 31, 2019 • [ espionage, malware, government ] Unit 02616 of Uzbekistan's National Security Service used FinFisher, a German spyware, to attack dissidents. Among the targets is Eltuz a regional news outlet that reports on the Uzbek government.