-
Wolverine Solutions Group (WSG)
February 27, 2019
•
[ ransomware, malware, healthcare ]
Wolverine Solutions Group (WSG) says that it discovered its systems had suffered a ransomware infection on September 25 last year. More than 700 companies and 1.2 million patients are affected.
-
Embassy Bangladesh in Egypt
February 27, 2019
•
[ hack, malware, government ]
Researchers from Trustwave reveal that the web site for the Bangladeshi Embassy in Cairo has been compromised so that it distributes malicious Word documents, which install malware downloaders onto an infected computer.
-
Aurora City Schools
February 26, 2019
•
[ financial, education ]
Aurora City Schools investigates a 'sophisticated' financial cyber-security breach.
-
Verifications.io
February 25, 2019
•
[ leak, misconfiguration, technology ]
In February 2019, the email address validation service verifications.io suffered a data breach. Discovered by Bob Diachenko and Vinny Troia, the breach was due to the data being stored in a MongoDB instance left publicly facing without a password and resulted in 763 million unique email addresses being exposed. Many records within the data also included additional personal attributes such as names, phone numbers, IP addresses, dates of birth and genders. No passwords were included in the data. The Verifications.io website went offline during the disclosure process, although an archived copy remains viewable.
-
Pakistani Users
February 24, 2019
Researchers from Group-IB discover two new databases with a total of 69,189 Pakistani banks' cards, shown up for sale on the dark web. Meezan Bank is among the victims of the breach.
-
GameSalad
February 24, 2019
•
[ hack, education ]
In February 2019, the education and game creation website Game Salad suffered a data breach. The incident impacted 1.5M accounts and exposed email addresses, usernames, IP addresses and passwords stored as SHA-256 hashes. The data was provided to HIBP by a source who requested it be attributed to "JimScott.Sec@protonmail.com".
-
Apex Human Capital Management
February 23, 2019
•
[ ransomware, malware, technology ]
Payroll software provider Apex Human Capital Management suffers a ransomware attack that severs payroll management services for hundreds of the company's customers for nearly three days. The company decides to pay the ransom.
-
EOS Cryptocurrency
February 23, 2019
•
[ hack, misconfiguration, finance ]
A hacker steals $7.7 million worth of EOS cryptocurrency after one of the 21 maintainers of an EOS blacklist fails to update it. The maintainer is identified in eos.games.
-
Pompano Beach
February 23, 2019
Pompano Beach is the latest municipality to warn its residents (4,000 people) of the Click2Gov breach.
-
ATM (Azienda Trasporti Milanese)
February 22, 2019
•
[ hack, government ]
Unknown attackers break into the systems of ATM (the public company responsible for public transportation in Milan).
-
Embassy of Russia in Austria
February 22, 2019
•
[ hack, ddos, government ]
After receiving complaints for the impossibility to book appointments, the Russian embassy in Austria discovers to be the victim of a DDoS attack via automated requests made by IP addresses from Iraq, Thailand, Indonesia and other countries.
-
US bank customers from 40 states
February 22, 2019
Joker's Stash, a well-known underground marketplace for selling stolen credit card dumps, advertises the "DaVinci Breach," a dump containing the card details for over 2.15 million US bank customers from 40 states.
-
Rutland Regional Medical Center
February 22, 2019
Rutland Regional Medical Center notifies patients after an employee email accounts hacked back in December 2018.
-
UConn Health
February 22, 2019
•
[ hack, phishing, healthcare ]
UConn Health discloses that an unauthorized third party had accessed employee email accounts, potentially breaching the privacy of 326,000 patients and others.
-
-
Twitter account of Tampa Mayor Bob Buckhorn
February 21, 2019
•
[ hack, social, government ]
A hacker takes over the Twitter account of Tampa Mayor Bob Buckhorn and sends out a fake ballistic missile warning and a bomb threat.
-
Chhattisgarh BJP
February 21, 2019
•
[ hack, government ]
The official website of BJP Chhattisgarh is defaced by a Pakistani hacker.
-
Italian Ministry of Environment
February 21, 2019
•
[ hack, government ]
In name of Operation Green Rights (#OpGreenRights) LulzSecITA hack and deface several domains belonging to the Italian Ministry of Environment.
-
Middle Eastern government agency
February 21, 2019
•
[ espionage, government ]
Researchers of Palo Alto Networks reveal the details of an additional attack by the Windhsift APT, targeting a Middle Eastern government agency.
-
Undisclosed Polish bank
February 21, 2019
Researchers from Sucuri discover a malicious spam campaign, targeting a Polish Bank and using a replica of Google reCAPTCHA.