-
Apollo
July 23, 2018
In July 2018, the sales engagement startup Apollo left a database containing billions of data points publicly exposed without a password. The data was discovered by security researcher Vinny Troia who subsequently sent a subset of the data containing 126 million unique email addresses to Have I Been Pwned. The data left exposed by Apollo was used in their "revenue acceleration platform" and included personal information such as names and email addresses as well as professional information including places of employment, the roles people hold and where they're located. Apollo stressed that the exposed data did not include sensitive information such as passwords, social security numbers or financial data. The Apollo website has a contact form for those looking to get in touch with the organisation.
-
SingHealth
July 20, 2018
•
[ leak, healthcare ]
Singapore's largest health care group, SingHealth, reveals to have suffered a cyber attack to a company database in which attackers copied information belonging to roughly 1.5 million patients, including the country's prime minster, Lee Hsien Loong.
-
Three U.S. congressional candidates
July 20, 2018
Microsoft reveals to have helped the U.S. government to fend off attempts by Russia to hack into the campaigns of three congressional candidates earlier this year.
-
MedSpring Urgent Care
July 20, 2018
•
[ social, phishing, healthcare ]
MedSpring Urgent Care notifies 13,000 patients after a phishing attack occurred on May 8.
-
Clark University
July 20, 2018
•
[ hack, phishing, education ]
Clark University in Massachusetts notifies some students whose personal information, including Social Security Numbers, were in an employee's email account that had been accessed between March 19 and March 23rd, amid a phishing attack.
-
NorthStar Anesthesia
July 20, 2018
•
[ hack, phishing, healthcare ]
NorthStar Anesthesia notifies patients after some employee email accounts are compromised between April 3 and May 24, 2018.
-
Boys Town National Research Hospital
July 20, 2018
•
[ hack, phishing, healthcare ]
Boys Town National Research Hospital discloses data breach that may have exposed PHI on 105,309 individuals. The hospital, on May 23, discovered unusual activity relating to an employee's email account.
-
Golden Heart Administrative Professionals
July 20, 2018
•
[ hack, healthcare ]
Golden Heart Administrative Professionals, a billing company and business associate of several healthcare providers in Alaska, notifies 44,600 individuals that some of their protected health information has potentially been accessed by unauthorized individuals.
-
Ochre Health Wollongong
July 20, 2018
•
[ hack, healthcare ]
An unspecified cyber incident at Ochre Health Wollongong medical centre leaves patients without the possibility to access their patient data.
-
PIR Bank of Russia
July 20, 2018
•
[ financial, misconfiguration, finance ]
Cybercriminals part of the notorious hacking group MoneyTaker attack the PIR Bank of Russia and steal $1M. The hacking is carried out after infiltrating the bank's systems by compromising an old, outdated router. The router was installed at one of the regional branches of the bank.
-
Liverpool FC
July 19, 2018
•
[ hack, financial ]
Liverpool FC's fan database is hacked resulting in a serious data breach for around 150 supporters. The club confirms that season ticket holder information - including home addresses and bank details - were stolen from a club email account.
-
ComplyRight
July 19, 2018
Cloud-based human resources company ComplyRight reveals that a security breach of its Web site may have compromised sensitive consumer information " including names, addresses, phone numbers, email addresses and Social Security numbers " from tax forms submitted by the company's thousands of clients on behalf of employees.
-
Roblox
July 19, 2018
Roblox, a hugely popular online game for kids, is hacked by an individual who subverts the game's protection systems in order to have customized animations appear. This allows two male avatars to gang rape a young girl's avatar on a playground in one of the Roblox games.
-
Adhoc
July 18, 2018
•
[ hack ]
The website of Adhoc, a Cambodian rights group, is defaced.
-
Ubisoft
July 17, 2018
Video game publisher Ubisoft suffers a series of massive DDoS attacks. As a result, several Ubisoft gaming servers face connectivity issues.
-
Sunspire Health
July 16, 2018
•
[ social, phishing, healthcare ]
Sunspire Health notifies an undisclosed number of individuals after several employee email accounts were accessed in a phishing attack between March 1, 2018 and May 4, 2018.
-
LabCorp
July 16, 2018
•
[ hack, healthcare ]
LabCorp, the US' biggest blood testing laboratories network, announces that hackers breached its IT network over the weekend.
-
City of Bozeman
July 16, 2018
The city of Bozeman says some customers that used its Click2Gov utility payment system in 2017 may have had their credit information stolen.
-
Mega
July 16, 2018
Thousands of credentials for accounts associated with New Zealand-based file storage service Mega are published online. The text file contains over 15,500 usernames, passwords, and files names.
-
Southern College of Optometry
July 16, 2018
•
[ hack, healthcare ]
The Southern College of Optometry notifies an undisclosed number of students whose student loan information and Social Security numbers were in an employee email account that was hacked.