-
Tomorrowland Festival
October 28, 2018
Hackers breach computer security at the Tomorrowland festival organizers, and steal the data of 64,000 people who signed up for tickets for the 2004 edition.
-
MapleChange
October 28, 2018
MapleChange, a Canadian crypto exchange, suffers a hack and looses all the funds (913 BTC, $6M worth), despite many accuse the exchange of attempting to stage an exit scam.
-
Bank Islami
October 27, 2018
•
[ financial, hack, finance ]
Karachi-based Bank Islami acknowledges of suffering a security breach of its payment cards system but denies reports of having lost an alleged $6 million in what local press have called the biggest cyber-attack in the country's history.
-
kasvyksta.lt
October 26, 2018
•
[ espionage, hack, government ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
-
Cathay Pacific
October 24, 2018
Cathay Pacific announces to have discovered unauthorised access to some of its information system containing passenger data of up to 9.4 million people. The attack started in March and went undetected for some months.
-
Eurostar
October 23, 2018
Eurostar has reset its customers' login passwords after detecting attempts to break into an unspecified number of accounts taking place between 15 and 19 October.
-
Jones Eye Clinic and Surgery Center
October 23, 2018
•
[ ransomware, malware, healthcare ]
40K users are affected by a ransomware attack, occurred on August 23, targeting Jones Eye Clinic and Surgery Center.
-
Children's Hospital of Philadelphia (CHOP)
October 23, 2018
Children's Hospital of Philadelphia (CHOP) notifies some of its current and former patients of two email incidents, both involving health information, occurred respectively on August 23, and September 6.
-
Internet Solutions
October 23, 2018
•
[ hack, misconfiguration, technology ]
Internet Solutions (IS) sends a notice to clients to warn them about a breach, and urges them to change their passwords and take additional steps to secure their servers. Later the company confirms that its internal monitoring systems have detected "irregular activity" on some of its virtual services.
-
Axa Mexico
October 23, 2018
•
[ hack, finance ]
Insurer Axa reveals it suffered a cyber attack that prompted an alert from the Mexico central bank, however clients' information and resources are safe and have not been affected.
-
Orange County Branch of the Girl Scouts of America
October 22, 2018
•
[ hack, education ]
Hackers breach the Orange County, Calif. branch of the Girl Scouts of America, potentially exposing personal information for 2,800 members and their families.
-
Davos in the Desert
October 22, 2018
•
[ hack, finance ]
The website of the Saudi Arabian investment conference, referred to as "Davos in the Desert", is defaced with anti-Saudi messages, to protest against the death of journalist Jamal Khashoggi.
-
Trade
October 21, 2018
Cryptocurrency exchange Trade.io reveals a security breach: an unknown party withdraws over 50 million Trade tokens (TIO), worth over $7.5 million, from its cold storage wallets.
-
GoldSilver
October 21, 2018
•
[ leak, misconfiguration, finance ]
In October 2018, the bullion education and dealer services site GoldSilver suffered a data breach that exposed 243k unique email addresses spanning customers and mailing list subscribers. An extensive amount of personal information on customers was obtained including names, addresses, phone numbers, purchases and passwords and answers to security questions stored as MD5 hashes. In a small number of cases, passport, social security numbers and partial credit card data was also exposed. The data breach and source code belonging to GoldSilver was publicly posted on a dark web service where it remained months later. When notified about the incident, GoldSilver advised that "all affected customers have been directly notified".
-
8 Adult Websites
October 20, 2018
Eight poorly secured websites are hacked, exposing megabytes of personal data. 1.2 million users are exposed.
-
Catawba Valley Medical Center
October 19, 2018
•
[ social, phishing, healthcare ]
Catawba Valley Medical Center notifies patients of a phishing email incident occurred on August 13, 2018.
-
Healthcare
October 19, 2018
The Centers for Medicare & Medicaid Services (CMS) announces that Healthcare.gov, the federally operated health insurance marketplace, has suffered a data breach. The CMS believes files for as many as 75,000 people were accessed.
-
Indiana National Guard
October 18, 2018
•
[ ransomware, malware, government ]
The Indiana National Guard reports that a non-military server that contains the personal information of civilian and military personnel is hit with ransomware.
-
City of Muscatine
October 17, 2018
The City of Muscatine is hit with a ransomware attack on October 17. Financial and other servers are affected.
-
Facepunch
October 17, 2018
•
[ leak, technology ]
As reported by Troy Hunt's Have I Been Pwned breach notification service, the Facepunch game studio was the victim of a data breach in June 2016 which led to sensitive information of 396,650 users being exposed.