Full List

Search

Recent Breaches

• ING January 27, 2018 • [ finance ] During the same weekend, also ING is targeted.
• phpBB January 26, 2018 • [ hack, malware, technology ] An unknown attacker compromises download links for the phpBB forum software, according to a statement released today by the phpBB development team.
• Coincheck January 26, 2018 • [ hack, finance ] Japanese cryptocurrency exchange Coincheck confirms that some $524 million worth of digital coins (a cryptocurrency called NEM) has been stolen "likely making it the largest single hack on an exchange.
• SVR (COZYBEAR) January 25, 2018 • [ espionage, government ] A threat actor successfully compromised the networks of the Dukes (Cozy Bear), gaining visibility into the Dukes' targeting methods and operations. This compromise allegedly helped the U.S. intelligence community to attribute the 2016 compromise of the Democratic National Committee and other entities to Russian state-sponsored actors.
• Harris County January 24, 2018 • [ financial, phishing, government ] Harris County lose almost $900K in a phishing scam. The attack dates back to September 2017.
• Bell Canada January 23, 2018 • [ hack, technology ] Police are investigating a new data breach at Bell Canada (the second in eight months), which says hackers have illegally obtained customer information, primarily subscriber names and e-mail addresses of up to 100,000 users.
• 220,000 Malaysian organ donors January 23, 2018 • [ leak, healthcare ] Another data breach in Malaysia. A technology forum publishes details of a trove of data which includes the personal information of more than 220,000 organ donors.
• Metrolinx January 23, 2018 • [ hack, government ] Ontario transit agency Metrolinx says it was the target of a cyberattack that originated in North Korea, but no personal information was compromised.
• National Stores, Inc. January 23, 2018 • [ financial, malware, retail ] National Stores, Inc. announces that it has been the victim of a malware attack, enabling unauthorized parties to access payment card information. It appears that payment cards used by customers at some National Stores locations between July 16 and December 11, 2017 may be involved.
• Charissa Thompson January 22, 2018 • [ hack, leak ] Fox Sports host Charissa Thompson is the latest celebrity whose nude photos are stolen by hackers and then published online as part of The Fappening scandal.
• David Clarke Jr. Twitter Account January 22, 2018 • [ hack, phishing, technology ] The Turkish Cyber Army hacking group strikes again and hijacks the Twitter account of vocal Donald Trump supporter and ex-Milwaukee County Sheriff David Clarke Jr.
• Club Penguin Rewritten (January 2018) January 21, 2018 In January 2018, the children's gaming site Club Penguin Rewritten (CPRewritten) suffered a data breach (note: CPRewritten is an independent recreation of Disney's Club Penguin game). The incident exposed almost 1.7 million unique email addresses alongside IP addresses, usernames and passwords stored as bcrypt hashes. When contacted, CPRewritten advised they were aware of the breach and had "contacted affected users".
• Charlotte Housing Authority January 19, 2018 • [ social, phishing, government ] 341 employees of the Charlotte Housing Authority have their W-2 forms compromised after scammers sent CHA staffers an e-mail pretending to be from CEO.
• Electronic Gas Stations January 19, 2018 • [ financial, malware, energy ] Russian authorities identify a distributed malware campaign targeting electronic gas stations using software programs at the pumps. Dozens of gas stations have been attacked with customers paying more for fuel (around 3 to 7% increment per gallon).
• Westminster Ingleside King Farm Presbyterian Retirement Communities January 19, 2018 • [ hack, malware, education ] Westminster Ingleside King Farm Presbyterian Retirement Communities notifies 5,228 Residents of a malware attack that occurred on November 21, 2017.
• Allscripts January 18, 2018 • [ ransomware, malware, healthcare ] A ransomware attack takes down some of the applications used by Allscripts.
• Questar Assessment January 18, 2018 A data breach at the company that develops New York State's third-through-eighth grade reading and math tests allows an unauthorized user to access information about 52 students. Also students in another state are affected, but the company does not provide further details.
• Tv3.lt January 18, 2018 • [ espionage, hack, technology ] Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
• Children's Aid Society of Oxford County January 18, 2018 • [ ransomware, malware, healthcare ] Two Ontario children's aid societies (Children's Aid Society of Oxford County and Family and Children's Services of Lanark, Leeds and Grenville) are hit by ransomware.
• Greta Van Susteren (@greta) Twitter account January 16, 2018 Former Fox News hosts Eric Bolling and Greta Van Susteren appear to have their Twitter accounts hijacked by a group of suspected Turkish hackers dubbed Ayy?ld?z Tim.