Full List

Search

Recent Breaches

• Clarifai June 12, 2018 A lawsuit filed by a former employee alleges that AI startup Clarifai's computer systems were compromised by one or more people in Russia, potentially exposing technology used by the US military. The lawsuit says Clarifai learned of the breach last November, but that Clarifai's CEO and other executives did not promptly report it to the Pentagon.
• Mexican National Action Party (PAN) June 12, 2018 • [ hack, government ] The website of the Mexican National Action Party is hit by a cyber attack during the final television debate between presidential candidates ahead of the July 1 vote, after the site had published documents critical of the leading candidate.
• slovensko June 12, 2018 • [ hack, ddos, government ] Several Slovakian websites including the Slovak Hydro-meteorological Institute and slovensko.sk are hit by a wave of DDoS attacks.
• Massachusetts Clean Energy Center June 12, 2018 • [ financial, government ] An audit reveals that a scammer stole nearly $94,000 in public funds from the Massachusetts Clean Energy Center last year.
• Trik Spam Botnet June 12, 2018 In June 2018, the command and control server of a malicious botnet known as the "Trik Spam Botnet" was misconfigured such that it exposed the email addresses of more than 43 million people. The researchers who discovered the exposed Russian server believe the list of addresses was used to distribute various malware strains via malspam campaigns (emails designed to deliver malware).
• South Korean Think Tank June 11, 2018 • [ espionage, malware, government ] North Korea-linked Lazarus APT Group planted an ActiveX zero-day exploit on the website of a South Korean think tank focused on national security.
• Bank of Chile June 11, 2018 Shares in the Bank of Chile are down after it confirms hackers siphon off $10 million of its funds, mainly to Hong Kong. However the bank says no client accounts have been impacted. Apparently a wiper malware was used to conceal the real purpose of the attack.
• Coinrail June 11, 2018 • [ hack, financial, finance ] Coinrail, a South Korean cryptocurrency exchange, says that its systems have been hacked. It is believed that hackers stole about 40 billion won (US$37.2 million) worth of cryptocurrency from Coinrail, including 21 billion won worth of Pundi X and 14.9 billion won worth of Aston.
• US Navy Contractor June 8, 2018 • [ espionage, hack, government ] Chinese government hackers have compromised the computers of a Navy contractor, stealing 600+ Gb of highly sensitive data related to undersea warfare, including secret plans to develop a supersonic anti-ship missile for use on U.S. submarines by 2020, accordding to American officials.
• Elmcroft Senior Living June 8, 2018 • [ leak, healthcare ] The personal information of Elmcroft Senior Living residents and their family members, employees and others could have been stolen in a data breach that occurred in mid-May.
• Terros Health June 8, 2018 Terros Health warns that 1,600 patient records were exposed in a data breach earlier this spring. The breach, due to a phishing attack, was discovered on April 12 and happened November 16, 2017.
• City of Wellington June 7, 2018 Wellington officials reveal to have been recently notified by Superion, their software vendor, about potential unauthorized charges on credit cards used by customers to pay their utility bills.
• RISE Wisconsin June 7, 2018 • [ ransomware, malware, healthcare ] RISE Wisconsin (formerly Community Partnerships and Center for Families) notifies its participants of a ransomware attack occurred on April 8, 2018.
• Estonian Citizens (via Estonian Cybercrime Bureau) June 7, 2018 • [ hack, malware, government ] In June 2018, the Cybercrime Bureau of the Estonian Central Criminal Police contacted HIBP and asked for assistance in making a data set of 655k email addresses searchable. The Estonian police suspected the email addresses and passwords they obtained were being used to access mailboxes, cryptocurrency exchanges, cloud service accounts and other similar online assets. They've requested that individuals who find themselves in the data set and also identify that cryptocurrency has been stolen contact them at cybercrime@politsei.ee.
• PageUp June 6, 2018 • [ leak, misconfiguration, technology ] Australia-based human resources firm PageUp confirms it found "unusual" activity on its IT infrastructure on May 23, which has resulted in the potential compromise of client data.
• Danielle Lloyd June 6, 2018 Danielle Lloyd, English model and former Miss England and Miss Great Britain, has her iCloud account hacked, with attackers stealing intimate images that were eventually posted online.
• Litecoin Cash June 6, 2018 Litecoin Cash is the latest crypto currency to suffer a 51% attack.
• Undisclosed Japanese syndicate wallet June 5, 2018 Shopin, a universal shopper profile using blockchain and Artificial Intelligence, releases an official statement indicating that a significant token distributor was hacked on June 1st, resulting in a loss of more than $10 million USD of a variety of tokens.
• Morinaga Milk Industry Co. June 4, 2018 Morinaga Milk Industry Co. says that personal data on up to 92,822 customers may have been stolen as its health food shopping website was hacked. Credit card information belonging to up to 29,773 of the affected customers was leaked and that around 300 cases of illicit use of this information involving some 20 million, have been confirmed so far.
• Avery Moss June 4, 2018 • [ hack, social, technology ] Explicit videos and pictures of New York Giants defensive end Avery Moss are posted on his Twitter timeline after his account is hacked.