-
University of Hawaii
March 5, 2019
•
[ espionage, education ]
Chinese hackers targeted twenty-seven universities in the United States, Canada, and Southeast Asia as part of a scheme to steal research about maritime technology under development for military use. Among the victimis is the University of Hawaii.
-
Thomas County School District
March 5, 2019
Thomas County School District notifies employees of an online banking system breach.
-
University of Washington
March 5, 2019
•
[ espionage, education ]
Chinese hackers targeted twenty-seven universities in the United States, Canada, and Southeast Asia as part of a scheme to steal research about maritime technology under development for military use. Among the victimis is the University of Washington.
-
Duke University
March 5, 2019
•
[ espionage, hack, education ]
Chinese hackers targeted twenty-seven universities in the United States, Canada, and Southeast Asia as part of a scheme to steal research about maritime technology under development for military use. Among the victimis is Duke University.
-
Hollywood Park, TX
March 5, 2019
•
[ financial, government ]
The town of Hollywood Park, TX is still trying to recover a portion of nearly half a million dollars that were stolen from it in March 2019.
-
Massachusetts Institute of Technology
March 5, 2019
•
[ hack, espionage, education ]
Chinese hackers targeted twenty-seven universities in the United States, Canada, and Southeast Asia as part of a scheme to steal research about maritime technology under development for military use. Among the victimis is the Massachusetts Institute of Technology.
-
Turkish government entity
March 4, 2019
•
[ espionage, malware, government ]
Researchers from Palo Alto Networks reveal that the Iran-linked Chafer APT group used a new Python-based backdoor in recent attacks aimed at a Turkish government entity.
-
90 Indian Government Websites
March 4, 2019
•
[ hack, government ]
Hackers from Pakistan attack over 90 Indian government websites and critical systems few hours after the Pulwama suicide strike.
-
Chinese rail control system
March 3, 2019
Researchers at Sixgill's threat intelligence team discover an "experienced threat actor" selling access to the admin panel of a Chinese rail control system on the Dark Web.
-
BambooHR
March 3, 2019
BambooHR discloses a breach involving tax payroll.
-
Bon Secours St. Francis Health System
March 1, 2019
Patients of a Bon Secours St. Francis Health System medical practice are being that their personal information may be at risk after a data breach at the practice.
-
MalindoAir
March 1, 2019
In early 2019, the Malaysian airline Malindo Air suffered a data breach that exposed tens of millions of customer records. Containing 4.3M unique email addresses, the breach also exposed extensive personal information including names, dates of birth, genders, physical addresses, phone numbers and passport details. The data was later extensively shared on popular hacking forums.
-
Newsquest Media Group
February 28, 2019
•
[ hack, technology ]
Several websites belonging to Newsquest Media Group, the second largest publisher of regional and local newspapers in the United Kingdom, are apparently defaced.
-
PIK-Group
February 28, 2019
•
[ hack, malware ]
Researcher Marco Ramilli publishes the analysis of a malware allegedly designed to target PIK-Group, the largest real estate and homebuilder company in Russia.
-
Lifebear
February 28, 2019
•
[ hack, technology ]
In early 2019, the Japanese schedule app Lifebear appeared for sale on a dark web marketplace amongst a raft of other hacked websites. The breach exposed almost 3.7M unique email addresses, usernames and passwords stored as salted MD5 hashes. The data was provided to HIBP by a source who requested it be attributed to "nano@databases.pw".
-
Estante Virtual
February 28, 2019
•
[ leak, misconfiguration, retail ]
In February 2019, the Brazilian book store Estante Virtual suffered a data breach that impacted 5.4M customers. The exposed data included names, usernames, email and physical addresses, phone numbers, dates of birth and unsalted SHA-1 password hashes.
-
Florida Keys Community College
February 27, 2019
•
[ social, phishing, education ]
Florida Keys Community College discovers that it became the target of a phishing email campaign that compromised several employee email account credentials back in October 2018.
-
Pasquotank-Camden Emergency Medical Service
February 27, 2019
•
[ hack, healthcare ]
Pasquotank-Camden Emergency Medical Service notifies 40,000 individuals after an unauthorized intrusion from outside the U.S. occurred in late December 2018.
-
Zillow
February 27, 2019
•
[ hack, misconfiguration, technology ]
Zillow is sued for $60 million after a hacker manages to gain access to a property's Zillow listing page, and update its information.
-
Topps
February 27, 2019
•
[ financial, malware, retail ]
Sports trading card and collectible company Topps issues a data breach notification stating that it was affected by a Magecart attack, which possibly exposed the payment and address information of its customers.