-
Colorado Mental Health Institute
December 22, 2017
•
[ social, phishing, healthcare ]
Colorado Mental Health Institute notifies 650 patients after a phishing incident.
-
Globex
December 21, 2017
•
[ hack, finance ]
Hackers try to steal 55 million rubles ($940,000) from Russian state bank Globex using the SWIFT international payments messaging system. At the end the hackers only withdraw around $100,000.
-
Nissan Canada Finance
December 21, 2017
•
[ hack, financial, manufacturing ]
Nissan Canada's vehicle-financing wing has been hacked, putting personal information of as many as 1.13 million customers at risk. The exposed data includes at least customer names, addresses, vehicle makes and models, vehicle identification numbers (VINs), credit scores, loan amounts and monthly payment figures.
-
WWE Diva Paige
December 21, 2017
•
[ leak ]
Unknown hackers leaked a new private photo of WWE Diva Paige.
-
Lyrics Mania
December 21, 2017
•
[ leak, misconfiguration, technology ]
In December 2017, the song lyrics website known as Lyrics Mania suffered a data breach. The data in the breach included 109k usernames, email addresses and plain text passwords. Numerous attempts were made to contact Lyrics Mania about the incident, however no responses were received.
-
EtherDelta
December 20, 2017
•
[ financial, hack, finance ]
Popular cryptocurrency exchange EtherDelta is hacked, with many users unknowingly sending their tokens to the hacker instead of the exchange. At least 308 ETH ($266,789) were stolen, as well as a large number of tokens potentially worth hundreds of thousands of dollars.
-
2fast4u
December 20, 2017
In December 2017, the Belgian motorcycle forum 2fast4u discovered a data breach of their system. The breach of the vBulletin message board impacted over 17k individual users and exposed email addresses, usersnames and salted MD5 passwords.
-
Medhost
December 19, 2017
•
[ hack, malware, healthcare ]
The website of medhost.com is redirected to a page where the attackers post a message claiming to have stolen personal information from the servers. However they do not provide any evidence of the data.
-
Youbit
December 19, 2017
The South Korean Bitcoin exchange Youbit, previously known as Yapizon quits its operation and files for bankruptcy due to two cyber attacks in the last eight months. The company suffers another data breach in which 17% of total assets have been stolen.
-
Bitfinex
December 17, 2017
•
[ hack, ddos, finance ]
Bitfinex is, once again hit by a massive DDoS attack.
-
Stanislaus County's Mental Health Department
December 15, 2017
•
[ ransomware, malware, government ]
500 computers from Stanislaus County's Mental Health Department are quarantined after ransomware is detected in the network.
-
Bitcoin Insiders in London
December 15, 2017
•
[ social, phishing, finance ]
Secureworks reveals a new spearphishing campaign circulating across bitcoin industry insiders in London, carried on via a fake job opening, and aimed to steal their online credentials. The fingers are pointed to the North Korean hackers of the Lazarus Group.
-
Texas Department of Agriculture
December 15, 2017
Students from 39 East Texas School Districts have their information compromised by an October hack of the Texas Department of Agriculture. The Department oversees school breakfast and lunch programs.
-
Transneft
December 15, 2017
•
[ hack, malware ]
Transneft reveals that its computers have been used for the unauthorized manufacture, or "mining", of the cryptocurrency Monero.
-
John Kahlbetzer
December 14, 2017
John Kahlbetzer, one of Australia's richest men suffers a $1m loss after his assistant is taken in by a classic Business Email Compromise (BEC) scam.
-
Fox-IT
December 14, 2017
Dutch security firm Fox-IT reveals to have fallen victim of a DNS Hijacking attack on September 19th 2017. The attacker modifies a DNS record for one particular server to point to a server in their possession and to intercept and forward the traffic to the original server that to Fox-IT.
-
Petro Rabigh
December 14, 2017
Security firm FireEye and Schneider Electric SE reveal the details of a new operation targeting Triconex industrial safety technology widely used inside nuclear, oil and gas plants. The first victim is allegedly located in Saudi Arabia. The malware is dubbed "Triton". A June 2021 indictment charges Evgeny Viktorovich Gladkikh, an employee of a Russian Ministry of Defense research institute and his co-conspirators, over causing two separate emergency shutdowns at a foreign targeted facility after deploying the Triton/Trisis malware.
-
-
Osaka University
December 13, 2017
•
[ hack, education ]
Osaka University says that personal data of around 80,000 students, graduates, staff, former workers and others may have been stolen by hackers.
-
Anderson Cooper's Twitter account (@andersoncooper)
December 13, 2017
•
[ hack, technology ]
CNN says Anderson Cooper's Twitter account was hacked after a since-removed tweet from his handle called the president a "tool" and a "pathetic loser" following Democrat Doug Jones win in Alabama's Senate election.