Full List

Search

Recent Breaches

• Roblox July 19, 2018 Roblox, a hugely popular online game for kids, is hacked by an individual who subverts the game's protection systems in order to have customized animations appear. This allows two male avatars to gang rape a young girl's avatar on a playground in one of the Roblox games.
• Adhoc July 18, 2018 • [ hack ] The website of Adhoc, a Cambodian rights group, is defaced.
• Ubisoft July 17, 2018 Video game publisher Ubisoft suffers a series of massive DDoS attacks. As a result, several Ubisoft gaming servers face connectivity issues.
• Sunspire Health July 16, 2018 • [ social, phishing, healthcare ] Sunspire Health notifies an undisclosed number of individuals after several employee email accounts were accessed in a phishing attack between March 1, 2018 and May 4, 2018.
• LabCorp July 16, 2018 • [ hack, healthcare ] LabCorp, the US' biggest blood testing laboratories network, announces that hackers breached its IT network over the weekend.
• City of Bozeman July 16, 2018 The city of Bozeman says some customers that used its Click2Gov utility payment system in 2017 may have had their credit information stolen.
• Mega July 16, 2018 Thousands of credentials for accounts associated with New Zealand-based file storage service Mega are published online. The text file contains over 15,500 usernames, passwords, and files names.
• Southern College of Optometry July 16, 2018 • [ hack, healthcare ] The Southern College of Optometry notifies an undisclosed number of students whose student loan information and Social Security numbers were in an employee email account that was hacked.
• University of Pittsburgh Medical Center - Cole July 16, 2018 • [ social, phishing, healthcare ] UPMC Cole has notified 790 patients treated at UPMC Cole that their personal information may have been inappropriately accessed after two phishing attacks on June 7 and June 14.
• League of Legends Philippines' July 15, 2018 • [ hack, malware, technology ] League of Legends Philippines' confirms an unauthorized modification in their client lobby code resulting in the injection of the Coinhive Monero miner.
• Italian Military July 15, 2018 • [ espionage, government ] Security researchers from the Z-Lab at CSE Cybersec reveal the details of Operation "Roman Holiday" an operation carried on by APT28 (AKA Fancy Bear) and targeting the Italian Military.
• Mahatma Gandhi Mission Hospital July 15, 2018 • [ ransomware, malware, healthcare ] The Mahatma Gandhi Mission Hospital in Mumbai is hit by a ransomware attack.
• ROMWE July 14, 2018 E-commerce site ROMWE has been hacked with over 7.3 million passwords and emails stolen. The data theft is thought to have started in July 2018.
• Billings Clinic July 13, 2018 • [ social, healthcare ] Billings Clinic discloses a breach exposing details of 8,400 patients. The organization detected anomalous activity on one of the employees' email accounts on May 14, 2018. The investigation revealed the account was compromised while the employee was travelling.
• Pennsylvania Department of Health July 13, 2018 • [ hack, government ] A government spokesman reveals that the Pennsylvania Department of Health's birth certificate system was shut down for nearly a week last month after someone hacked into an internal website but did not take or alter citizens records.
• Alive Hospice July 13, 2018 • [ social, leak, phishing ] Alive Hospice notifies patients whose personal and protected health information were in employee emails that were accessed by an unknown person or persons beginning on December 20, 2017 and again on April 5, 2018 after two employees fell prey to phishing attempts.
• UMC Physicians (UMCP) July 12, 2018 UMC Physicians (UMCP) notifies patients who may have been affected by a recent data breach. On May 18, the UMCP IT team discovered an employee's email account was hacked on March 15, potentially compromising the personal health information of more than 18,000 patients.
• Aviation ID Australia July 11, 2018 Aviation ID Australia, the company that issues Aviation Security Identity Cards (ASICs) is hacked and notifies hundreds of people that their ASIC application information may have been stolen.
• Chlorine distillation plant in Ukraine July 11, 2018 • [ hack, malware, energy ] The Ukrainian Secret Service (SBU) reveals it stopped a cyber-attack with the VPNFilter malware on a chlorine distillation plant in the village of Aulska, in the Dnipropetrovsk region. The SBU accuses Russia of operating the malware and launching the attack.
• BP July 11, 2018 • [ hack, retail ] BP emails about 60,000 people who applied for jobs in its retail stores since 2008 to notify them they could have had their personal information accessed by hackers. The company originally thought about 10,000 applicants' data had been breached.