Full List

Search

Recent Breaches

• DoorDash September 25, 2018 • [ hack, brute-force, technology ] Food delivery startup DoorDash receives dozens of complaints from customers who say their accounts have been hacked. The users are the target of a credential stuffing attack.
• RWE September 25, 2018 • [ hack, ddos, energy ] Unknown attackers launch a large-scale DDoS attack that takes down RWE's website.
• Aspire Health September 25, 2018 • [ hack, healthcare ] Aspire Health, is hacked earlier this month and loses at least some patient information to an unknown cyber attacker.
• Chegg September 25, 2018 • [ leak, education ] Educational technology company Chegg resets the passwords for 40 million of its users after news broke that the firm was breached in April of this year.
• Oklahoma City Public Schools September 24, 2018 • [ hack, ddos, education ] The Oklahoma City Public School District is affected by a DDoS attack on their parent portal.
• AdGuard September 21, 2018 • [ hack, brute-force, technology ] AdGuard, a popular ad blocker for Android, iOS, Windows, and Mac, resets all user passwords, after suffering a brute-force attack during which an unknown attacker tried to log into user accounts by guessing their passwords.
• Bryan Caforio's website September 21, 2018 A DDoS attack takes down California Democratic congressional hopeful Bryan Caforio's website just hours before he steps onto the debate stage to face fellow Democrats.
• Infinite Campus September 21, 2018 • [ hack, ddos, education ] Infinite Campus, one of the largest student information management systems used by schools in America, is coping with the latest in a string of Distributed Denial-of-Service (DDoS) attacks.
• Zaif September 20, 2018 • [ hack, finance ] Yet another Japan-based cryptocurrency exchange is hacked, losing a 6.7 billion yen (about $60 million worth of cryptocurrency), including 5,966 bitcoins.
• Port of Barcelona September 20, 2018 The land operations of the Port of Barcelona are impacted by a ransomware attack.
• Arran Brewery September 20, 2018 Arran Brewery says it was locked out of its own computer system after being duped into opening an email attachment that contained a ransomware. The attackers then demanded a 2BTC ransom.
• City of Beatrice September 19, 2018 • [ hack, malware, government ] A virus shuts down many city operations including phone and internet services for several departments.
• Newegg September 19, 2018 • [ financial, malware, retail ] Researchers from RiskIQ, together with Volexity, reveal that California-based retailer Newegg is the latest well-known merchant to succumb to the Magecart group.
• ABS-CBN September 18, 2018 213 customers of ABS-CBN, a Filipino media conglomerate, have their financial data stolen data due to a payment skimmer discovered in the broadcaster's online store.
• SaverSpy September 18, 2018 • [ leak, misconfiguration, technology ] In September 2018, security researcher Bob Diachenko discovered a massive collection of personal details exposed in an unprotected Mongo DB instance. The data appears to have been used in marketing campaigns (possibly for spam purposes) but had little identifying data about it other than a description of "Yahoo_090618_ SaverSpy". The data set provided to HIBP had almost 2.5M unique email addresses (all of which were from Yahoo!) alongside names, genders and physical addresses.
• Saverspy September 17, 2018 • [ leak, misconfiguration, retail ] Bob Diachenko, a security researcher, identifies an unsecured MongoDB server leaking the personal details of nearly 11 million users. The database seems to have been ransomed back in June.
• Unknown Organization September 17, 2018 • [ leak, government ] LulzSecITA leaks the personal details of about 300 retired military officials.
• Perth Mint September 17, 2018 • [ hack, government ] A data breach at Perth Mint sees hackers take the personal details of about 3200 customers, far more than initially suspected. The breach occurred on the system of a third-party technology provider and only involved 13 customers initially.
• Groopdealz September 14, 2018 • [ hack, malware, retail ] Groopdealz joins the list of the victims of the Magecart group.
• Guardant Health September 14, 2018 Guardant Health suffered a phishing attack in July 2018 according to an SEC filing for the firm's initial public offering, where private information from about 1,100 individuals was compromised.