Full List

Search

Recent Breaches

• Bristol Airport September 14, 2018 • [ ransomware, malware ] Flight information screens are blacked out over the weekend at the Bristol Airport. Airport officials blame the incident on a ransomware infection that affected the computers running the airport's in-house TV.
• Colorado Timberline September 14, 2018 • [ ransomware, malware, manufacturing ] Colorado Timberline, a Colorado printing company claims to have been forced out of business after being hit with a severe ransomware attack from which it could not recover.
• Italian National Institute for Social Assistance (INAS) September 14, 2018 • [ hack, government ] The portal of the Italian National Institute for Social Assistance (INAS) is hacked, compromising the information of 37,500 individuals.
• EOSBet September 14, 2018 A gambling application that is based on the EOS blockchain has a flaw in its smart contract system exploited. The attacker is able to make off with $200,000 worth of EOS due to the vulnerability.
• Fetal Diagnostic Institute of the Pacific (FDIP) September 13, 2018 • [ ransomware, malware, healthcare ] Honolulu-based Fetal Diagnostic Institute of the Pacific (FDIP) announces to have been hit by a ransomware attack that may have compromised patient data.
• Unknown Organization September 12, 2018 • [ hack, ddos, education ] The website of Edinburgh University is down after the institution suffered a major DDoS attack.
• Monroe County School District September 12, 2018 • [ ransomware, malware, education ] A GandCrab ransomware attack forces Monroe County School District in Florida to shut down its computer systems for at least three days.
• SMEG UK September 12, 2018 • [ hack, manufacturing ] The UK branch of the appliance manufacturer SMEG reveals to have been hit by a "targeted cyber attack".
• Feedify September 12, 2018 Customer engagement service Feedify is hit by Magecart attackers, who repeatedly modified a script that it serves to a few hundred websites to include payment card skimming code.
• City of Tyler September 11, 2018 • [ hack, government ] The city of Tyler is the latest victim of the Click2Gov payment system breach.
• University of Louisville September 11, 2018 • [ hack, education ] Nearly 250 University of Louisville faculty and staff enrolled between 2007 and 2014 have their personal info stolen through the "Get Healthy Now" program.
• Kayo.moe Credential Stuffing List September 11, 2018 In September 2018, a collection of almost 42 million email address and plain text password pairs was uploaded to the anonymous file sharing service kayo.moe. The operator of the service contacted HIBP to report the data which, upon further investigation, turned out to be a large credential stuffing list. For more information, read about The 42M Record kayo.moe Credential Stuffing Data.
• DEOSGames September 10, 2018 • [ financial, technology ] Betting platform DEOSGames is drained of a significant chunk of its operating funds in a heist that netted one 'lucky' punter almost $24,000.
• FreshMenu September 10, 2018 • [ hack, retail ] The Indian online food platform FreshMenu admits to have hidden a data breach affecting 110K users for two years. The data breach happened on July 1, 2016.
• C-CEX September 9, 2018 • [ hack, finance ] Cryptocurrency exchange C-CEX is hacked. The attackers are successfully able to withdraw all Litecoin (LTC) and Dogecoin (DOGE) from company servers.
• U.S. Department of State September 7, 2018 • [ leak, government ] The State Department suffers a breach of its unclassified email system, and the compromise exposes the personal information of a small number of employees.
• British Airways September 6, 2018 British Airways notifies authorities, after being hacked between August 21 and September 5, with 380,000 payments compromised.
• Mammoth Screen September 6, 2018 • [ hack ] A threat actor targeted Mammoth Screen, a UK production company that produced Opposite Number, a television drama set in North Korea.
• Cork City Park by Phone September 6, 2018 • [ leak ] A data breach at Cork City Park by Phone service in Ireland affects more than 5,000 people. The unauthorized access started in May.
• Rousseau September 5, 2018 • [ leak, government ] Rousseau, the online platform of the Italian Five Star Movement is hacked again by rogue0, who leaks private data related to the donors.