Full List

Search

Recent Breaches

• Taringa August 1, 2017 • [ leak, misconfiguration, technology ] In September 2017, news broke that Taringa had suffered a data breach exposing 28 million records. Known as "The Latin American Reddit", Taringa's breach disclosure notice indicated the incident dated back to August that year. The exposed data included usernames, email addresses and weak MD5 hashes of passwords.
• Wix July 31, 2017 • [ hack, malware, technology ] Website-building service Wix.com reveals to have been the subject of a massive cyber-attack in April 2016 when a botnet of rogue Chrome extensions was creating Wix websites to spread itself to new users.
• Mahanagar Telephone Nigam Limited (MTNL) July 31, 2017 • [ hack, malware, technology ] The author of the BrickerBot malware claims responsibility for a cyber-attack that took place in various Indian states and causes over 60,000 modems and routers to lose Internet connectivity.
• Mandiant July 31, 2017 A Mandiant threat intelligence analyst is the victim of Operation #LeakTheAnalyst. Attackers infiltrate his computer for more than a year and leak some internal data.
• HBO July 31, 2017 • [ hack, leak, technology ] HBO joins the ranks of Hollywood entertainment companies to suffer a major cyber attack. The company network is compromised and the attackers claim to have stolen 1.5 TB of data. Few days after they leak an episode of the new season of Games of Thrones.
• Copyfish Chrome Web Store Account July 31, 2017 Phishers hack Copyfish, an extension for Google Chrome, after compromising the Chrome Web Store account of German developer team a9t9 software and abusing it to distribute spam messages to unsuspecting users.
• Equifax July 29, 2017 • [ financial, technology ] Equifax, reveals to have been hit by a data breach that could potentially affect 143 million consumers in the United States. The breach was discovered on July 29th.
• Plastic Surgery Associates July 29, 2017 • [ ransomware, malware, healthcare ] Plastic Surgery Associates reveals that a data breach may have compromised patient records after it was hit with a ransomware attack earlier this year on 12 February.
• Women's Health Care Group of PA (WHCGPA) July 29, 2017 • [ ransomware, malware, healthcare ] Women's Health Care Group of PA (WHCGPA) reveals to have been hit by ransomware on May 16, 2017. 300,000 patient records are affected.
• CIA July 28, 2017 WikiLeaks publishes three new alleged CIA hacking tools as part of its new Vault 7 dump.
• WestJet July 28, 2017 WestJet says it is working with police in Calgary and the RCMP cybercrime unit after some members' profile data were disclosed online.
• Macron Campaign July 27, 2017 • [ espionage, social, government ] Reuters reveals that Russian intelligence agents attempted to spy on President Emmanuel Macron's election campaign earlier this year by creating phony Facebook personas.
• Virgin America July 27, 2017 • [ hack ] Virgin America confirms that a hacker broke into its corporate network earlier this year on March 13.
• MALL.cz July 27, 2017 • [ leak, brute-force, retail ] In July 2017, the Czech Republic e-commerce site MALL.cz suffered a data breach after which 735k unique accounts including email addresses, names, phone numbers and passwords were later posted online. Whilst passwords were stored as hashes, a number of different algorithms of varying strength were used over time. All passwords included in the publicly distributed data were in plain text and were likely just those that had been successfully cracked (members with strong passwords don't appear to be included). According to MALL.cz, the breach only impacted accounts created before 2015.
• Victoria Justice's Twitter account July 26, 2017 • [ hack, technology ] Victoria Justice's Twitter account is hacked. The attacker claims to reveal nude pictures.
• UniCredit July 26, 2017 • [ hack, finance ] UniCredit SpA, Italy's No. 1 bank, says that hackers took biographical and loan data from 400,000 client accounts. The attack occurred in September and October of 2016 and June and July of this year.
• Kylie Jenner's Snapchat account July 25, 2017 • [ hack, technology ] Kylie Jenner's Snapchat account is hacked. The attacker claims to reveal nude pictures.
• Veritaseum July 24, 2017 Another day another Ethereum related breach. This time the target is Veritaseum, whose Initial Coin Offering (ICO) suffers a data breach in which around US$8.4 million worth of Ethereum are stolen.
• Sarah Hyland July 24, 2017 • [ leak ] Nude photos and video of Sarah Hyland are leaked online.
• Bank of America customers July 21, 2017 • [ social, phishing, finance ] A new campaign targets Bank of America customers via emails pretending to be from representatives of the Bank of America.