Full List

Search

Recent Breaches

• La Porte County July 6, 2019 • [ ransomware, malware, government ] La Porte County is hit by a ransomware attack and pays $130,000 to recover data.
• Croatian government July 5, 2019 • [ espionage, malware, government ] A new report reveals that Croatian government employees have been targeted by a state-sponsored actor between February and April this year, via the Empire and SilentTrinity backdoors.
• Maryland Department of Labor July 5, 2019 • [ leak, government ] The Maryland Department of Labor (Maryland DoL) publishes a press release explaining that sensitive information of roughly 78,000 customers including names and social security numbers was accessed by an unauthorized party.
• American Land Title Association (ALTA) July 3, 2019 American Land Title Association (ALTA) publishes a warning about hundreds of title company records having been supposedly stolen as part of a phishing campaign targeting ALTA members.
• City of Griffin July 3, 2019 • [ financial, phishing, government ] Over $800,000 are stolen from the City of Griffin, Georgia, by scammers in a BEC (Business Email Compromise) attack by redirecting two transactions to their own bank accounts.
• Prime Bank July 3, 2019 Three banks in Bangladesh are hit by the Silence group in May, suffering losses up to $3M.
• Canonical Ltd. July 2, 2019 The GitHub account of Canonical Ltd., the company behind the Ubuntu Linux distribution, is hacked.
• 7-Eleven Japan July 2, 2019 • [ financial, retail ] Approximately 900 customers of 7-Eleven Japan have lost a collective of 55 million ($510,000) after hackers hijacked their 7pay app accounts and made illegal charges in their names.
• St. John Ambulance July 2, 2019 • [ ransomware, malware, healthcare ] A ransomware attack temporarily blocks St. John Ambulance staff from accessing its systems. The attack was detected and was resolved within half an hour.
• Chilean Ministry of Agriculture July 1, 2019 • [ ransomware, malware, government ] The Chilean Ministry of Agriculture is hit by the DoppelPaymer ransomware.
• Georgia Court System July 1, 2019 • [ ransomware, malware, government ] The Georgia Court System is hit by a ransomware attack. The attackers demand around $2 million in Bitcoin to restore access.
• US Virgin Islands Water and Power Authority July 1, 2019 The Water and Power Authority of the US Virgin Islands is the victim of a Business Email Compromise scam, costing $2.3 million.
• Planet Calypso July 1, 2019 • [ hack, sqlinjection, technology ] In approximately July 2019, the forums for the Planet Calypso game suffered a data breach. The breach of the vBulletin based forum exposed email and IP addresses, usernames and passwords stored as salted MD5 hashes.
• XKCD July 1, 2019 In July 2019, the forum for webcomic XKCD suffered a data breach that impacted 562k subscribers. The breached phpBB forum leaked usernames, email and IP addresses and passwords stored in MD5 phpBB3 format. The data was provided to HIBP by white hat security researcher and data analyst Adam Davies.
• Quidd July 1, 2019 In 2019, online marketplace for trading stickers, cards, toys, and other collectibles Quidd suffered a data breach. The breach exposed almost 4 million users' email addresses, usernames and passwords stored as bcrypt hashes. The data was subsequently sold then redistributed extensively via hacking forums.
• University of Ottawa Newspaper (The Fulcrum) June 30, 2019 Someone hacks the website of the University of Ottawa Newspaper (called The Fulcrum) and deletes all the online content.
• Summa Health June 28, 2019 • [ social, phishing, healthcare ] More than 500 patient medical records and other personal information are at-risk as a result of an email phishing incident that targeted Summa Health employees.
• Ben Gurion International Airport June 27, 2019 Since early June, GPS signals at the Ben Gurion airport have been unreliable for pilots and planes using the location. Israeli authorities point the finger to Russia, who denies the accusations.
• Bitrue June 27, 2019 Bitrue is the latest victim of a hack against a crypto wallet. The funds of 90 people are accessed and $4 million worth of cryptocurrency is stolen.
• PCM Inc. June 27, 2019 • [ hack, phishing, technology ] An intrusion at PCM Inc., a cloud solution provider, allows hackers to access email and file sharing systems for some of the company?s clients. PCM discovered the intrusion in mid-May 2019. The attackers stole administrative credentials for Office 365.