-
Bolt
March 1, 2017
In approximately March 2017, the file sharing website Bolt suffered a data breach resulting in the exposure of 995k unique user records. The data was sourced from their vBulletin forum and contained email and IP addresses, usernames and salted MD5 password hashes. The site was previously reported as compromised on the Vigilante.pw breached database directory.
-
Singapore's Ministry of Defence (Mindef)
February 28, 2017
•
[ hack, government ]
Singapore's Ministry of Defence (Mindef) confirms that the personal details more than 850 national servicemen and employees were stolen in a "targeted and well-planned" cyberattack earlier this month.
-
Diamond Institute for Infertility and Menopause
February 27, 2017
Diamond Institute for Infertility and Menopause notifies patients of an incident involving their electronic health records server, maintained by an unnamed third party. The incident happened in February 2017.
-
Luxembourg government servers
February 27, 2017
•
[ hack, ddos, government ]
The Luxembourg government's servers are hit in a massive DDoS attack that lasts over 24 hours. The attack is believed to have affected over a hundred websites hosted by the government's servers.
-
Association of British Travel Agents (ABTA)
February 27, 2017
The UK's largest travel trade organisation, the Association of British Travel Agents (ABTA) experiences a cyberattack on its website that puts 43,000 holidaymakers and travel agents at risk of identity theft.
-
Amalgamated Sugar
February 27, 2017
Nearly 3,000 workers at Amalgamated Sugar receive notifications of an intruder accessing the company's network and their personal information being disclosed.
-
Travel Corporation
February 26, 2017
Travel Corporation falls victim to a W-2 Scam.
-
St. Mary's Catholic Academy
February 26, 2017
•
[ hack, misconfiguration, education ]
Hackers break into CCTV systems of at least four British schools and stream footage of pupils live on the internet. St. Mary's Catholic Academy and Christ The King Academy Primary School are two fo the victims.
-
UK think tanks
February 26, 2017
Crowdstrike reveals that some UK think tanks specializing in international security were hacked by China-based group 'Deep Panda' beginning in April 2017.
-
Roberts Hawaii
February 26, 2017
•
[ hack, misconfiguration, retail ]
The tour company Roberts Hawaii warns its customers about a security breach that may have affected people who purchased tours and other services on its website between July 2015 and December 2016.
-
Porsche Japan
February 26, 2017
•
[ hack, manufacturing ]
The Japanese arm of Porsche says more than 28,000 email addresses have been leaked via a hack.
-
U.S. Residents in 20 states
February 26, 2017
•
[ financial, malware ]
According to federal court documents, Russian hackers operating in Colorado and 15 other states used data-mining viruses to steal thousands of credit card numbers from U.S. residents in 20 states and sold them on the darknet for more than $3.6 million.
-
Inland Revenue Department
February 25, 2017
•
[ ransomware, malware, government ]
Thousands of Inland Revenue files are locked up after New Zealand's tax department becomes the target of a Cryptolocker attack in November.
-
Jorgie Porter
February 25, 2017
•
[ leak ]
English actress and model Jorgie Porter is the latest victim of The Fappening hackers, who manage to steal her intimate pictures and videos and post them online.
-
Ohio state government websites
February 25, 2017
•
[ hack, ddos, government ]
In name of #opUSA, hacktivists from the Anonymous collective take down some Ohio State websites.
-
Apple
February 23, 2017
•
[ hack, malware, technology ]
A mid-2016 security incident led to Apple purging its data centers of servers built by Supermicro, including returning recently purchased systems, after malware-infected firmware was reportedly detected in an internal development environment of Apple's technical infrastructure, which powers its web-based services and holds customer data.
-
Retina-X
February 23, 2017
•
[ hack, misconfiguration, technology ]
In February 2017, the mobile device monitoring software developer Retina-X was hacked and customer data downloaded before being wiped from their servers. The incident was covered in the Motherboard article titled Inside the 'Stalkerware' Surveillance Market, Where Ordinary People Tap Each Other's Phones. The service, used to monitor mobile devices, had 71k email addresses and MD5 hashes with no salt exposed. Retina-X disclosed the incident in a blog post on April 27, 2017.
-
Bitfinex
February 22, 2017
•
[ hack, ddos, finance ]
Top Bitcoin trading platform Bitfinex is hit by a "severe DDoS attack."
-
South Washington County School District
February 22, 2017
•
[ hack, education ]
The South Washington County school district tightens security after a high school student hacks into the district's server and takes names, Social Security numbers and some addresses.
-
Coachella Music Festival
February 22, 2017
•
[ leak ]
Nearly one million Coachella accounts are reportedly currently up for sale on the dark web.
