Portend Breaches

Russian Federation Drug Control Service December 16, 2016 • [ hack, ddos, government ] Cryptolulz666 was just testing his own botnet, then later he targeted the website of the Russian Federal Drug Control Service liquidation commission. The Russian website was down for several hours.

Summit Reinsurance Services Inc. December 16, 2016 • [ hack, finance ] Personal Information of about 1000 Black Hawk College employees and their dependents could have been compromised in a hack of Summit Reinsurance Services Inc., a former insurance provider's server.

Ethereum December 16, 2016 In December 2016, the forum for the public blockchain-based distributed computing platform Ethereum suffered a data breach. The database contained over 16k unique email addresses along with IP addresses, private forum messages and (mostly) bcrypt hashed passwords. Ethereum elected to self-submit the data to HIBP, providing the service with a list of email addresses impacted by the incident.

Anti Public Combo List December 16, 2016 • [ leak, misconfiguration ] In December 2016, a huge list of email address and password pairs appeared in a "combo list" referred to as "Anti Public". The list contained 458 million unique email addresses, many with multiple different passwords hacked from various online systems. The list was broadly circulated and used for "credential stuffing", that is attackers employ it in an attempt to identify other online systems where the account owner had reused their password. For detailed background on this incident, read Password reuse, credential stuffing and another billion records in Have I Been Pwned.

Unknown Organization December 15, 2016 • [ hack, government ] The official website of the Russian National Visa Bureau in the Netherlands (rnvb.nl) is hacked with the information of thousands of people exposed.

Election Assistance Commission December 15, 2016 • [ hack, government ] The Election Assistance Commission, the U.S. agency charged with ensuring that voting machines meet security standards, was itself penetrated by a hacker after the November elections, according to security firm Recorded Future.

Undisclosed Ukrainian banks December 15, 2016 • [ hack, malware, finance ] ESET reports that BlackEnergy, the same group who targeted Ukrainian utilities last December has been using the TeleBots malware against Ukrainian banks in the last month.

PayAsUGym December 15, 2016 • [ hack, leak, misconfiguration ] In December 2016, an attacker breached PayAsUGym's website exposing over 400k customers' personal data. The data was consequently leaked publicly and broadly distributed via Twitter. The leaked data contained personal information including email addresses and passwords hashed using MD5 without a salt.

Frederick County Public Schools December 14, 2016 • [ leak, education ] Data on about 1,000 former students in Frederick County Public Schools in Maryland was likely exposed in a data breach that occurred prior to 2010 but which was only discovered in September of this year.

Embassy of Russia in Armenia December 14, 2016 Cryptolulz666 breaks into the database of the website of the Russian Embassy of Armenia (embassyru.am) and leaks the corresponding data.

Ukraine's Ministry of Defence December 13, 2016 • [ hack, ddos, government ] Ukraine's defence ministry says that its website is down due to cyber attacks that appeared aimed at disrupting it giving updates on the pro-Russian separatist conflict in eastern regions.

KFC December 12, 2016 KFC warns its 1.2 million Colonel's Club loyalty scheme members that their data may have been breached after its website was hacked. Apparently only 30 users have been affected.

ambru December 12, 2016 • [ hack, sqlinjection, government ] Kapustkiy claims to have stolen thousands of passport numbers and other pieces of personal information from the website of a Russian consular department (ambru.nl).

Ravish Kuma December 9, 2016 • [ hack, social ] The Legion collective hack the Twitter accounts of Barkha Dutt and Ravish Kumar, two prominent journalists with Indian NDTV news channel.

Etana Habte December 9, 2016 A threat actor targeted Ethiopian dissidents for the purpose of espionage, using commercially available spyware sold by Cyberbit, an Israel-based company. Most notably, the actor targeted the Oromia Media Network and some individuals associated with it.

Vijay Mallya December 9, 2016 • [ hack, leak, technology ] Indian tycoon Vijay Mallya's Twitter account appears to have been hacked. The alleged hackers hijack Mallya's account and are currently leaking the industrialist's personal and sensitive information.

Akbank December 8, 2016 News emerges that hackers targeted Turkey's Akbank via the SWIFT global money transfer system in an attack which the bank said had not compromised customer data but would cost it up to $4 million.

ThyssenKrupp December 8, 2016 ThyssenKrupp reveals that in February of this year, hackers infiltrated its computer systems and stealthily carried out an espionage operation that reportedly managed to avoid detection until April.

Kagoya December 8, 2016 • [ financial, hack, technology ] Kagoya, a famous hosting service provider in Japan suffers a security breach in which the personal and financial data of its customers is stolen. In an email to their customers, Kagoya states that the attack affected about 50,000 customers who used their credit cards between April 1, 2015 and September 21, 2016.

US law firms December 7, 2016 A series of security breaches that stuck prestigious law firms last year was more pervasive than reported and was carried out by people with ties to the Chinese government, according to evidence seen by Fortune.

Recent Breaches