Full List

Search

Recent Breaches

• Fergana News October 31, 2019 • [ espionage, malware, technology ] Unit 02616 of Uzbekistan's National Security Service used FinFisher, a German spyware, to attack dissidents. Among the targets is Fergana News a regional news outlet that reports on the Uzbek government.
• Marriott International October 30, 2019 Marriott International notifies some of its associates of an incident that exposed their social security numbers (SSNs) to an unknown party who may have accessed the information from the network of an unnamed vendor.
• Ontario Science Centre October 30, 2019 A third-party email vendor for the Ontario Science Centre suffers a data breach exposing some PII of 174,000 of the Centre's members, donors and customers. The breach occurred on August 16
• Kudankulam Nuclear Power Plant October 30, 2019 • [ hack, malware, energy ] Nuclear Power Corporation of India Ltd (NPCIL) confirms that the network of a nuclear power plant was infected with malware. Several security researchers identify the malware as a version of DTrack, a backdoor trojan developed by the Lazarus Group.
• Nikkei America October 30, 2019 Nikkei loses roughly 29 million dollars after an employee of the Nikkei America subsidiary is tricked by scammers to send the funds to a bank account they controlled.
• Bed Bath & Beyond October 29, 2019 • [ leak, retail ] Bed Bath & Beyond discloses that an unauthorized party obtained login information for some of its customers (1% of customer base).
• Indian users October 29, 2019 • [ financial, malware, finance ] Researchers from Group-IB discover more than 1.3 million Indian payment card details put up for sale on Joker's Stash, the internet's largest carding shop.
• Las Cruces Public Schools October 29, 2019 • [ ransomware, malware, education ] A ransomware attack hits Las Cruces Public Schools and forces the district to shut down the entire computer system to contain the infection.
• Prisma Health October 29, 2019 • [ social, phishing, healthcare ] Prisma Health discloses a cyber attack after an employee falls victim of a phishing attack.
• Maestro October 28, 2019 • [ hack, technology ] Russian group Sandworm carried out large-scale cyberattacks against targets in Georgia. The hackers disrupted Proservice a webhosting site, which led to the defacement of as many as 15,000 websites. Additionally, two TV broadcasters, Imedi TV and Maestro, were taken offline as well.
• American Cancer Society October 28, 2019 • [ financial, malware, healthcare ] A Magecart attack is detected in the American Cancer Society online store.
• City of Ocala October 28, 2019 • [ financial, social, phishing ] The City of Ocala in Florida falls victim to a business email compromise scam (BEC) that ends with redirecting over $742,000 to a bank account controlled by the fraudster(s).
• Krystal October 28, 2019 • [ retail ] U.S. fast-food restaurant chain Krystal discloses a security incident involving one of is payment processing systems and affecting some of its restaurants between July and September 2019.
• Website of the President of Georgia October 28, 2019 • [ hack, government ] The websites of several Georgian government agencies, media outlets, and NGOs are hit by cyberattattacks. Among the victims are the websites of President Salome Zourabichvili and the Goergian courts. Russia is blamed for the attacks.
• Sixth June October 28, 2019 • [ financial, malware, retail ] French fashion online store Sixth June is infected some time ago with code that steals payment card info at checkout.
• UniCredit October 28, 2019 • [ hack, misconfiguration, finance ] UniCredit uncover a data breach involving the personal records of 3 million domestic clients from a compromised 2015 file.
• Indian Railways October 28, 2019 • [ leak, misconfiguration, government ] In November 2019, the website for Indian Rail left more than 2M records exposed on an unprotected Firebase database instance. The exposed data included 583k unique email addresses alongside usernames and passwords stored in plain text.
• Undefined Turkish Telco Company October 27, 2019 • [ hack, ddos, technology ] Turkish officials confirm that cyberattacks which targeted Telekom and Garanti BBVA, among many others, were behind the nationwide disruption in internet traffic.
• Garanti BBVA October 27, 2019 Turkish officials confirm that cyberattacks which targeted T rk Telekom and Garanti BBVA, among many others, were behind the nationwide disruption in internet traffic.
• National Veterinary Associates (NVA) October 27, 2019 • [ ransomware, malware, healthcare ] National Veterinary Associates (NVA), a California company that owns more than 700 animal care facilities around the globe, is hit by a ransomware attack.