-
UNIQLO Japan
May 13, 2019
Fast Retailing, the company behind multiple Japanese retail brands, announces that the UNIQLO Japan and GU Japan online stores have been hacked and third parties accessed 461,091 accounts following a credential stuffing attack between April 23 and May 10.
-
Oregon Health Authority
May 13, 2019
•
[ social, phishing, healthcare ]
Oregon Health Authority provides early notification to Oregon State Hospital patients of a phishing incident occurred on May 6 and targeting an email account containing OSG data.
-
Alpaca Forms
May 12, 2019
•
[ hack, malware, technology ]
Hackers breach the Cloud CMS managed CDN and modify one of the Alpaca Form scripts to inject malicious code in over 3,400 sites.
-
Picreel
May 12, 2019
•
[ hack, malware, technology ]
Hackers breach the analytics service Picreel and embed malicious code on over 1,200 websites.
-
FirstBank
May 11, 2019
FirstBank cancels debit cards because of what the bank described as a "possible external security" incident that affected the bank.
-
American Medical Collection Agency
May 10, 2019
•
[ leak, misconfiguration, healthcare ]
A data breach involving a medical collection agency affects more than 200,000 patients who had used the firm's online payment portal between September, 2018 and the beginning of March, 2019. The data is found on the dark web.
-
The Southeastern Council on Alcoholism and Drug Dependence, Inc. ("SCADD")
May 10, 2019
•
[ ransomware, malware, healthcare ]
The Southeastern Council on Alcoholism and Drug Dependence, Inc. ("SCADD") provides notice of a ransomware attack affecting 25,148 patients.
-
Episcopal Health Services
May 10, 2019
Episcopal Health Services warn of a data breach due to a suspicious activity in employee email accounts between August 28, 2018 and October 5, 2018.
-
Pacers Sports & Entertainment (PSE)
May 10, 2019
•
[ hack, phishing ]
Pacers Sports & Entertainment (PSE), the legal entity behind the Indiana Pacers and the Indiana Fever NBA and WNBA basketball teams, announces a security breach during which hackers gained access to sensitive user information via a phishing attack.
-
WIRED
May 9, 2019
•
[ financial, hack, misconfiguration ]
Cond Nast notifies about 1,100 WIRED subscribers of a breach involving their payment information, when an unauthorized party accessed a third-party vendor's systems between April 14 and April 17, 2019.
-
MuddyWater Rana Institute
May 9, 2019
Two new leaks exposing Iranian cyber-espionage operations are published via Telegram, the Dark Web and the Internet. One claims to contain data from the MuddyWater group, while the second leak exposes a new group identified as the Rana Institute.
-
275 Million Indian Citizens
May 8, 2019
•
[ ransomware, misconfiguration, government ]
The "Unistellar" hacking group steals 275 million records of Indian citizens from a publicly configured Mongo database exposing and hold them for ransom.
-
Amazon
May 8, 2019
•
[ financial, hack, retail ]
Amazon.com Inc. said it was hit by an "extensive" fraud, revealing that unidentified hackers were able to siphon funds from merchant accounts over six months last year.
-
-
City of Baltimore
May 7, 2019
•
[ ransomware, malware, government ]
Systems at a number of Baltimore's city government departments are taken offline by a ransomware attack caused by the RobbinHood malware.
-
OS Inc.
May 7, 2019
Spectrum Health Lakeland notifies a breach of billing provider, OS Inc. Other victims include: Tahoe Forest Health District, Sparta Community Hospital, Sauk Prairie Healthcare, Idaho Department of Health and Welfare, Fort Healthcare, Midwest MC.
-
Ordine Avvocati di Roma
May 7, 2019
•
[ leak, government ]
In May 2019, the Lawyers Order of Rome suffered a data breach by a group claiming to be Anonymous Italy. Data on tens of thousands of Roman lawyers was taken from the breached system and redistributed online. The data included contact information, email addresses and email messages themselves encompassing tens of thousands of unique email addresses. A total of 42k unique addresses appeared in the breach.
-
Metro Presort
May 6, 2019
•
[ ransomware, malware, healthcare ]
Metro Presort was attacked by the Ryuk ransomware gang. At the time, the company was serving 21 healthcare entities which may have been affected by the attack.
-
American Baptist Homes of the Midwest
May 6, 2019
•
[ ransomware, malware, healthcare ]
American Baptist Homes of the Midwest notifies patients and residents of ransomware incident occurred on May 6, 2019.
-
30,000 Roman lawyers, including the Mayor of Rome Virginia Raggi
May 6, 2019
Hackers from LulzSec Italia and Anonymous Italia leak online sensitive data of 30,000 Roman lawyers, including the Mayor of Rome Virginia Raggi.