Full List

Search

Recent Breaches

• DaFont May 16, 2017 • [ hack, sqlinjection, technology ] In May 2017, font sharing site DaFont suffered a data breach resulting in the exposure of 637k records. Allegedly due to a SQL injection vulnerability exploited by multiple parties, the exposed data included usernames, email addresses and passwords stored as MD5 without a salt.
• Docusign May 15, 2017 DocuSign acknowledges that a series of recent malware phishing attacks targeting its customers and users was the result of a data breach at one of its computer systems.
• Unnamed military contractor May 15, 2017 • [ espionage, malware, government ] TrapX reveals to have repelled an attack against an unnamed military contractor carried on by Iranian hackers using a Russian Toolset.
• Philippine Government May 15, 2017 Vietnamese threat actor Ocean Lotus has released documents stolen from the Philippine government including a transcript of a phone call between President Duterte and President Trump.
• Bell (2017 breach) May 15, 2017 • [ leak, insider, telecommunications ] In May 2017, the Bell telecommunications company in Canada suffered a data breach resulting in the exposure of millions of customer records. The data was consequently leaked online with a message from the attacker stating that they were "releasing a significant portion of Bell.ca's data due to the fact that they have failed to cooperate with us" and included a threat to leak more. The impacted data included over 2 million unique email addresses and 153k survey results dating back to 2011 and 2012. There were also 162 Bell employee records with more comprehensive personal data including names, phone numbers and plain text "passcodes". Bell suffered another breach in 2014 which exposed 40k records.
• West Bengal State Electricity Distribution Company May 12, 2017 • [ ransomware, malware, energy ] A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system.
• Brooks Brothers May 12, 2017 • [ financial, malware, retail ] U.S. clothing company Brooks Brothers reveals that payment card information of certain customers was compromised at some of its retail locations in the United States and Puerto Rico over 11 months until March.
• National University of Singapore (NUS) May 12, 2017 • [ espionage, education ] Reports emerge that two Singapore universities suffered APT (advanced persistent threat) attacks last month, with the attackers specifically targeting government and research data.
• Timr Municipality May 12, 2017 • [ ransomware, malware, government ] A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with thedecryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system.
• Tiong Bahru Plaza May 12, 2017 • [ hack, retail ] Message Manipulation; Data Attack
• Nissan May 12, 2017 • [ ransomware, malware, manufacturing ] A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system. The attack shut down a Nissan factory in Sunderland.
• Renault May 12, 2017 • [ ransomware, malware, manufacturing ] A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system. The attack shut down Renault operations in several countries.
• Russian Central Bank May 12, 2017 • [ ransomware, malware, finance ] A threat actor used a tool called WannaCry to encrypt data in compromised networks, and intended to provide the victims with the decryption key only after a ransom had been paid. The threat actors used an exploit, called EternalBlue--first discovered by the U.S. National Security Agency--to propagate WannaCry in organizations using the Windows operating system. The Russian Central Bank detected an attack on its systems, but was able to thwart it.
• Energy networks of the Baltic states May 11, 2017 • [ espionage, energy ] Reuters reports that suspected Russia-backed hackers have launched exploratory cyber attacks against the energy networks of the Baltic states.
• Ukrainian Soldiers May 11, 2017 • [ social, government ] Ukrainian soldiers are hit by an ongoing campaign of propaganda-texting. The campaign is attributed to Russian forces equipped with cell site simulators (IMSI-catchers).
• Edmodo May 11, 2017 A hacker steals millions of user account details from popular education platform Edmodo, and the data is apparently for sale on the so-called dark web. The organization claims to have over 78 million members.
• Edmodo May 11, 2017 • [ leak, hack, education ] In May 2017, the education platform Edmodo was hacked resulting in the exposure of 77 million records comprised of over 43 million unique customer email addresses. The data was consequently published to a popular hacking forum and made freely available. The records in the breach included usernames, email addresses and bcrypt hashes of passwords.
• Reincubate May 11, 2017 • [ leak, misconfiguration, technology ] In October 2020, the app data company Reincubate suffered a data breach which exposed a backup from November 2017 (the newest record in the data appeared several months earlier). The data included over 616k unique email addresses, names and passwords stored as PBKDF2 hashes.
• Cedexis May 10, 2017 • [ hack, ddos, technology ] A DDos attack against Cedexis knocks out several major French news websites including Le Monde and Le Figaro.
• FCC (Federal Communications Commission) May 7, 2017 The FCC website is hit by a DDoS Attack.