-
University of Pittsburgh Medical Center - Cole
July 16, 2018
•
[ social, phishing, healthcare ]
UPMC Cole has notified 790 patients treated at UPMC Cole that their personal information may have been inappropriately accessed after two phishing attacks on June 7 and June 14.
-
League of Legends Philippines'
July 15, 2018
•
[ hack, malware, technology ]
League of Legends Philippines' confirms an unauthorized modification in their client lobby code resulting in the injection of the Coinhive Monero miner.
-
Italian Military
July 15, 2018
•
[ espionage, government ]
Security researchers from the Z-Lab at CSE Cybersec reveal the details of Operation "Roman Holiday" an operation carried on by APT28 (AKA Fancy Bear) and targeting the Italian Military.
-
Mahatma Gandhi Mission Hospital
July 15, 2018
•
[ ransomware, malware, healthcare ]
The Mahatma Gandhi Mission Hospital in Mumbai is hit by a ransomware attack.
-
ROMWE
July 14, 2018
E-commerce site ROMWE has been hacked with over 7.3 million passwords and emails stolen. The data theft is thought to have started in July 2018.
-
Billings Clinic
July 13, 2018
•
[ social, healthcare ]
Billings Clinic discloses a breach exposing details of 8,400 patients. The organization detected anomalous activity on one of the employees' email accounts on May 14, 2018. The investigation revealed the account was compromised while the employee was travelling.
-
Pennsylvania Department of Health
July 13, 2018
•
[ hack, government ]
A government spokesman reveals that the Pennsylvania Department of Health's birth certificate system was shut down for nearly a week last month after someone hacked into an internal website but did not take or alter citizens records.
-
Alive Hospice
July 13, 2018
•
[ social, leak, phishing ]
Alive Hospice notifies patients whose personal and protected health information were in employee emails that were accessed by an unknown person or persons beginning on December 20, 2017 and again on April 5, 2018 after two employees fell prey to phishing attempts.
-
UMC Physicians (UMCP)
July 12, 2018
UMC Physicians (UMCP) notifies patients who may have been affected by a recent data breach. On May 18, the UMCP IT team discovered an employee's email account was hacked on March 15, potentially compromising the personal health information of more than 18,000 patients.
-
Aviation ID Australia
July 11, 2018
Aviation ID Australia, the company that issues Aviation Security Identity Cards (ASICs) is hacked and notifies hundreds of people that their ASIC application information may have been stolen.
-
Chlorine distillation plant in Ukraine
July 11, 2018
•
[ hack, malware, energy ]
The Ukrainian Secret Service (SBU) reveals it stopped a cyber-attack with the VPNFilter malware on a chlorine distillation plant in the village of Aulska, in the Dnipropetrovsk region. The SBU accuses Russia of operating the malware and launching the attack.
-
BP
July 11, 2018
•
[ hack, retail ]
BP emails about 60,000 people who applied for jobs in its retail stores since 2008 to notify them they could have had their personal information accessed by hackers. The company originally thought about 10,000 applicants' data had been breached.
-
Major international airport
July 11, 2018
•
[ hack, misconfiguration, technology ]
While researching underground hacker marketplaces, researchers from McAfee discover that access linked to security and building automation systems of a major international airport could be bought for only US$10.
-
Ammyy
July 11, 2018
Researchers from ESET reveal that on June 13 or 14, the Ammyy website was compromised to serve a malware-tainted version of this otherwise legitimate software bundling the Kasidet trojan. To add an interesting twist to the incident, the attackers tried to hide their malicious activity behind the brand of the ongoing FIFA World Cup.
-
Cambodian Ministry of Foreign Affairs and International Cooperation
July 10, 2018
•
[ espionage, hack, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian Ministry of Foreign Affairs and International Cooperation.
-
Cambodian National Election Committee
July 10, 2018
•
[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian National Election Committee.
-
Cambodian People's Party
July 10, 2018
•
[ espionage, hack, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the ruling Cambodian People's Party.
-
Career and Technology Education Centers (C-TEC)
July 10, 2018
•
[ leak, misconfiguration, education ]
Career and Technology Education Centers (C-TEC) reveals it suffered a possible data breach earlier this year that could have exposed individuals' names and Social Security numbers. The breach happened on May 25 when an unauthorized person had access to a private file for several minutes.
-
Cambodia National Rescue Party
July 10, 2018
•
[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the opposition Cambodia National Rescue Party.
-
Cambodian Senate
July 10, 2018
•
[ espionage, government ]
A threat actor has compromised political parties, as well as organizations charged with overseeing the 2018 Cambodian elections, for espionage purposes. The threat actors, who are likely Chinese, have also targeted Cambodian government organizations. One of the targets is the Cambodian Senate.