-
University of Vermont Medical Center
July 21, 2017
University of Vermont Medical Center notifies 2,300 patients of a phishing incident that occurred back in May 2017.
-
Newcastle University
July 20, 2017
•
[ social, phishing, education ]
Newcastle University issues an alert, warning prospective students to be careful when seeking to apply and pay online for courses, after discovering the existence of a sophisticated phishing scam.
-
Kansas Department of Commerce
July 20, 2017
•
[ hack, government ]
A security breach in the Kansas Department of Commerce exposes millions of Social Security numbers from people across 10 states to hackers. Many other accounts are also attacked.
-
Loblaws
July 19, 2017
•
[ hack, retail ]
According to an email sent out to Loblaws account holders, the security of a 'small number' of accounts has been compromised, marking the second time the company has suffered a security breach this year. Comprised websites include Loblaws.ca, Joefresh.com and Beautyboutique.ca.
-
KQED
July 18, 2017
•
[ ransomware, malware, technology ]
KQED, a San Francisco radio station is still recovering from a ransomware attack, nearly one month after.
-
B2B USA Businesses
July 18, 2017
In mid-2017, a spam list of over 105 million individuals in corporate America was discovered online. Referred to as "B2B USA Businesses", the list categorised email addresses by employer, providing information on individuals' job titles plus their work phone numbers and physical addresses. Read more about spam lists in HIBP.
-
CoinDash
July 17, 2017
An unknown hacker takes over the official website of the CoinDash platform and modifies an Ethereum wallet address during the company's ICO (Initial Coin Offering) being able to steal $7 million worth of Ethereum.
-
South Carolina's Voter Registration System
July 16, 2017
•
[ hack, government ]
According to a post-election report by the South Carolina State Election Commission, South Carolina's voter registration system was reportedly hit by almost 150,000 hack attempts on Election Day 2016.
-
Ireland's Electricity Supply Board
July 15, 2017
•
[ espionage, phishing, energy ]
The Times reveals that hackers backed by the Russian government have targeted the Republic of Ireland's energy sector, and aimed to infiltrate control systems. This would have given them the power to knock out parts of the grid in Northern Ireland. The attackers sent phishing emails to senior engineers at Ireland's Electricity Supply Board.
-
Peachtree Neurological Clinic
July 14, 2017
•
[ ransomware, malware, healthcare ]
While investigating a ransomware incident, Peachtree Neurological Clinic discovers that its computer system had been previously accessed without its knowledge by unauthorized individuals between February 2016 and May 2017.
-
Square Enix
July 14, 2017
•
[ hack, ddos, technology ]
Square Enix attributes the connectivity issues that have plagued Final Fantasy 14's Stormblood expansion since its release in June on continuous distributed denial-of-service (DDoS) attacks from a third party.
-
Mansfield 103.2
July 11, 2017
•
[ hack, misconfiguration, technology ]
The UK Communications Regulator (Ofcom) is hunting a pirate who persistently overrides frequency of Mansfield 103.2 to play a modified version of "The Winker's Song".
-
Trump International Hotels Management
July 11, 2017
Trump International Hotels Management reveals that the data breach to Sabre Corp, which occurred in May 2017, compromised card payment details at 14 of its properties. The compromised information included payment card numbers and card security codes for some of the hotel chain's reservations processed through Sabre's central reservation system.
-
Community Care of St. Catharines and Thorold
July 11, 2017
•
[ hack, malware ]
Community Care of St. Catharines and Thorold notifies to be still recovering from a cyberattack that shut its computers down for more than a week.
-
Reliance Jio
July 9, 2017
•
[ leak, misconfiguration, technology ]
Personal details of some 120 million Reliance Jio customers are exposed on the Internet in probably the biggest breach of personal data ever in India.
-
Real Estate Business Services (REBS)
July 9, 2017
•
[ leak ]
Real Estate Business Services (REBS), a subsidiary of the California Association of Realtors, acknowledges to have suffered a data breach that exposed user information for a two-month period earlier this year.
-
Avanti Markets
July 8, 2017
•
[ hack, malware, finance ]
Avanti Markets, a self-service payment kiosks vendors acknowledges to have suffered of breach of its internal networks in which hackers were able to push malicious software out to payment devices.
-
Deep Hosting
July 8, 2017
•
[ hack, technology ]
Deep Hosting, a Dark Web hosting service, admits to have suffered a major security incident during which "some sites have been exported".
-
gandi
July 7, 2017
•
[ hack, malware, technology ]
French domain registrar Gandi loses control over 751 customer domains, which have their DNS records altered to point incoming traffic to websites hosting exploits kits.
-
B&B Theatres
July 7, 2017
B&B Theatres, a company that owns and operates the 7th-largest theater chain in America, says it is investigating a breach of its credit card systems starting in September 2015.
