Full List

Search

Recent Breaches

• Pont3 October 6, 2016 • [ leak, misconfiguration, retail ] Pont3, an Australian event organizer, reveals that an unauthorized party had gained access to its mailing list account and downloaded data about individuals that subscribed to various events organized by the company in the past.
• The Clinton Foundation October 6, 2016 • [ hack, phishing, healthcare ] The Clinton Foundation warns donors about targeted hacking attempts to steal their personal information.
• BuzzFeed October 5, 2016 • [ hack, technology ] OurMine hackers take control of BuzzFeed's website and alter multiple stories published on its site.
• store October 4, 2016 Suspected Russian hackers are believed to have been skimming credit card information of Republican donors for the past six months. The NRSC is among more than 5,900 e-commerce sites victims of the same attack.
• Spotify October 4, 2016 • [ hack, malware, technology ] Multiple users report that popular music-streaming service Spotify serves malware-laden ads.
• The Clinton Foundation October 4, 2016 • [ hack, government ] Guccifer 2.0 posts what the hacker claims are files stolen from the Clinton Foundation, but the foundation says the assertions are not true.
• w0rm October 2, 2016 In what is defined a "hacker drama", Peace, of the most known BlackHats defaces the forum of w0rm, another well known blackhat.
• University of Central Florida October 1, 2016 • [ financial, malware, education ] A malware infection is to blame for a payment card data breach affecting at least 230 University of Central Florida students.
• Pokémon Negro October 1, 2016 • [ leak, technology ] In approximately October 2016, the Spanish Pokmon site Pokmon Negro suffered a data breach. The attack resulted in the disclosure of 830k accounts including email and IP addresses along with plain text passwords. Pokmon Negro did not respond when contacted about the breach.
• Large LED video screen billboard in South Jakarta September 30, 2016 • [ hack, technology ] An unknown hacker or a group of hackers hack into the computer system of a large LED video screen billboard in the Kebayoran Baru district of South Jakarta and replace the advertisement on the screen with pornographic content for a short period of time.
• newseasims September 30, 2016 • [ leak, technology ] A hacker going by the handle of "Websites Hunter" hacks newseasims.com, a website that offers custom content for Sims video games from Electronic Arts, and leaks personal details of 118,000 customers/users.
• Newsweek September 30, 2016 Newsweek suspects that Russian hackers are to blame for the crash of its website, after it published an article about Donald Trump's company secretly conducting business in Cuba in the 1990s.
• Bellingcat September 29, 2016 • [ espionage, technology ] ThreatConnect reveals that investigative journalism group Bellingcat, that helped to investigate the downing of flight MH17 over eastern Ukraine in 2014 have been targeted in a series of sophisticated attacks by pro-Russia group Fancy Bear.
• feverclan September 29, 2016 • [ hack, leak ] pr0jekkt hacks feverclan.com and dumps the data of 50,000 users.
• Jive September 29, 2016 Software house Jive resets customers passwords after the company discovered a data breach.
• Justdate.com September 29, 2016 • [ leak, technology ] An alleged breach of the dating website Justdate.com began circulating in approximately September 2016. Comprised of over 24 million records, the data contained various personal attributes such as email addresses, dates of birth and physical locations. However, upon verification with HIBP subscribers, only a fraction of the data was found to be accurate and no account owners recalled using the Justdate.com service. This breach has consequently been flagged as fabricated; it's highly unlikely the data was sourced from Justdate.com.
• Pippa Middleton September 27, 2016 Pippa Middleton falls fallen victim to an iCloud hacker after an anonymous seller calling himself 'Crafty Cockney' offers to sell 3,000 private photographs of her and fiance James Matthews to the press for 50,000.
• WestPark Capital September 27, 2016 The Dark Overlord leak around 20 internal files online from Los Angeles-based WestPark Capital, as retaliation for the bank's CEO not accepting their "handsome proposal".
• Aipai.com September 27, 2016 In September 2016, data allegedly obtained from the Chinese gaming website known as Aipai.com and containing 6.5M accounts was leaked online. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and MD5 password hashes. Read more about Chinese data breaches in Have I Been Pwned.
• Berat Albayrak September 26, 2016 • [ hack, government ] The RedHack collective claims to have hacked personal email accounts of Turkey's Energy Minister and President Erdogan's son-in-law, Berat Albayrak.