-
Banco Inter
May 4, 2018
•
[ hack, finance ]
Shares in Banco Inter fall as much as 11 percent after reports that a hacking attack had obtained sensitive data pertaining to clients. Banco Inter reveals it was "the victim of attempted extortion."
-
K9 Web Protection
May 4, 2018
•
[ hack, technology ]
Hackers from the collective AnonPlus, a splinter cell of Anonymous, deface the website of K9 Web Protection (belonging to Symantec).
-
Riverside Fire and Police department
May 4, 2018
•
[ ransomware, malware, government ]
Ransomware infects the servers of the Riverside Fire and Police department for the second time in a month.
-
Copenhagen city's bicycle sharing system "Bycyklen"
May 4, 2018
•
[ hack, government ]
Unknown hackers disrupt the Copenhagen city's bicycle sharing system "Bycyklen", erasing the data of 1,860 bicycles.
-
City of Tulsa
May 4, 2018
•
[ hack, government ]
The City of Tulsa confirms that computer hackers broke into several City controlled accounts but says it appears there have been no effects on city systems.
-
W.S. Neal High School
May 4, 2018
•
[ hack, misconfiguration, education ]
While finalizing end-year school rankings, W.S. Neal High School realizes that someone has been changing grades since 2016.
-
Northwest University
May 4, 2018
•
[ financial, hack, education ]
The email account of the Northwest University's CFO is hacked. As a consequence $60,000 are stolen.
-
FloridaBariatric
May 3, 2018
Several Florida Hospital Websites are taken offline after being affected by a malware that could have compromised patient information. The list of the affected hospitals include: FloridaBariatric.com, FHOrthoInstitute.com and FHExecutiveHealth.com.
-
World Rugby Training and Education Website
May 3, 2018
World Rugby is forced to suspend its training and education website after the governing body is the target of a cyber attack that sees hackers obtain personal data from thousands of subscribers.
-
24TV Turk Telekom
May 3, 2018
•
[ hack, ddos, technology ]
As a retaliation for the attacks of the Turkish collective Akincilar, Greek hackers from Anonymous paralyze the 24TV Live website for several hours. They also claim to have hacked 12,987 routers of Turk Telekom.
-
Fleetcor Technologies
May 3, 2018
•
[ hack, finance ]
Fleetcor Technologies, a company specializing in fuel cards and workforce payment products and services, publicly discloses that its gift card systems were accessed last month by an unauthorized party. A "significant number" of gift cards that are at least six months old, as well as PIN numbers, were accessed.
-
Meituan Dianping
May 3, 2018
•
[ leak, retail ]
Meituan Dianping, the internet giant backed by Tencent, China's most valuable tech corporation, begins investigating reports of a data breach that exposed the private information of tens of thousands of users.
-
Fredericksburg School System
May 2, 2018
•
[ social, phishing, education ]
A Fredericksburg school system employee falls for phishing attack.
-
Greek Foreign Ministry
May 2, 2018
The Turkish hacker group Akincilar ("Invaders") starts its offensive against Greece and defaces four websites (Greek Foreign Ministry, Athens-Macedonia News Agency - ANA -, the Greek Handball Federation, and Suzuki-Greece).
-
Knox County's website
May 1, 2018
•
[ hack, ddos, government ]
The Tennessee county's website is taken down by a DDoS attack on election night.
-
Rail Europe North America
May 1, 2018
•
[ financial, malware, retail ]
Rail Europe, a site used by Americans to buy train tickets in Europe, reveals a three-month data breach of credit cards and debit cards. Hackers implanted credit card-skimming malware on its website between late-November 2017 and mid-February 2018.
-
Linux Forums
May 1, 2018
•
[ leak, misconfiguration, technology ]
In May 2018, the Linux Forums website suffered a data breach which resulted in the disclosure of 276k unique email addresses. Running on an old version of vBulletin, the breach also disclosed usernames, IP addresses and salted MD5 password hashes. Linux Forums did not respond to multiple attempts to contact them about the breach.
-
Creative
May 1, 2018
•
[ hack, misconfiguration, technology ]
In May 2018, the forum for Singaporean hardware company Creative Technology suffered a data breach which resulted in the disclosure of 483k unique email addresses. Running on an old version of vBulletin, the breach also disclosed usernames, IP addresses and salted MD5 password hashes. After being notified of the incident, Creative permanently shut down the forum.
-
Chegg
April 28, 2018
•
[ hack, misconfiguration, education ]
In April 2018, the textbook rental service Chegg suffered a data breach that impacted 40 million subscribers. The exposed data included email addresses, usernames, names and passwords stored as unsalted MD5 hashes. A small number of records also contained physical address or phone number. The data was provided to HIBP by a source who requested it be attributed to "JimScott.Sec@protonmail.com".
-
Funny Games
April 28, 2018
•
[ leak, misconfiguration, technology ]
In April 2018, the online entertainment site Funny Games suffered a data breach that disclosed 764k records including usernames, email and IP addresses and salted MD5 password hashes. The incident was disclosed to Funny Games in July who acknowledged the breach and identified it had been caused by legacy code no longer in use. The record count in the breach constitute approximately half of the user base.