Full List

Search

Recent Breaches

• Statistical Centre of Iran May 24, 2016 • [ hack, government ] The Statistical Centre of Iran is targeted by unknown attackers. Iran tracks the origin of the attack from three Arab countries including Saudi Arabia.
• Unknown Organization May 23, 2016 • [ hack, government ] A hacker who goes by the nickname of Amar^SHG (formerly Kuroi'SH) defaces France's most visited weather portal, M t o France.
• burgerking May 22, 2016 Azmeth hacks burgerking.com.au and dumps 4,833 records with usernames and hashed passwords.
• Fur Affinity May 20, 2016 • [ hack, technology ] Fur Affinity, a community people with an interest in anthropomorphic animal characters such as wolves and foxes is hacked and the hackers may have run off with email addresses and hashed passwords.
• San Juan County May 20, 2016 • [ hack, government ] San Juan County reports that the information of patients in the county's DWI treatment program may have been compromised after an attacker gained remote access to one of its computers.
• Santiago Aguirre May 20, 2016 • [ espionage, malware, government ] The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Santiago Aguirre, a staff member at Centro PRODH, a Mexican human rights and legal aid organization.
• Sindicat de Mossos d'Esquadra May 20, 2016 • [ hack, leak, government ] Phineas Fisher, the hacker behind the Gamma International and Hacking Team breaches hacks the Sindicat de Mossos d'Esquadra (the Catalan police union), publishes personal information about police officers (including their badge numbers), and hijacks their Twitter account.
• Ubiquity Networks May 20, 2016 Ubiquity Networks reveals that an exploit which can lead to completely hijacked network devices is being used in fresh campaigns against its devices.
• Regpack May 20, 2016 • [ leak, misconfiguration, finance ] In July 2016, a tweet was posted with a link to an alleged data breach of BlueSnap, a global payment gateway and merchant account provider. The data contained 324k payment records across 105k unique email addresses and included personal attributes such as name, home address and phone number. The data was verified with multiple Have I Been Pwned subscribers who confirmed it also contained valid transactions, partial credit card numbers, expiry dates and CVVs. A downstream consumer of BlueSnap services known as Regpack was subsequently identified as the source of the data after they identified human error had left the transactions exposed on a publicly facing server. A full investigation of the data and statement by Regpack is detailed in the post titled Someone just lost 324k payment records, complete with CVVs.
• 33 Turkish Hospitals May 18, 2016 • [ leak, healthcare ] Hacker(s) claiming to be part of Anonymous post online a link pointing to a 2GB archive containing personal records stolen from 33 Turkish hospitals.
• Rafael Cabrera May 18, 2016 • [ espionage, malware, government ] The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Rafael Cabrera, a reporter with Aristegui Noticias.
• Complete Chiropractic & Bodywork Therapies May 18, 2016 • [ hack, malware, healthcare ] Complete Chiropractic & Bodywork Therapies notifies 4,082 patients after discovering that malware had been injected into their system in November, 2015.
• Daniel Lizarraga May 18, 2016 • [ espionage, malware, government ] The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Daniel Lizarraga, a journalist working at Mexicans Against Corruption and Impunity.
• The Sydney Morning Herald May 18, 2016 Two Australian-based news websites, belonging to Fairfax Media, The Sydney Morning Herald and The Age Digital Editions, have been hacked and as a result, over 13,000 email subscriber accounts have been leaked online.
• Army Force Online May 18, 2016 In May 2016, the online gaming site Army Force Online suffered a data breach that exposed 1.5M accounts. The breached data was found being regularly traded online and included usernames, email and IP addresses and MD5 passwords.
• Alexandra Zapata May 17, 2016 • [ espionage, malware, government ] The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the victims is Alexandra Zapata, an investigator at the Mexican Institute for Competitiveness.
• Fur Affinity May 17, 2016 In May 2016, the Fur Affinity website for people with an interest in anthropomorphic animal characters (also known as "furries") was hacked. The attack exposed 1.2M email addresses (many accounts had a different "first" and "last" email against them) and hashed passwords.
• Commercial Bank of Ceylon May 16, 2016 • [ hack, finance ] The Sri Lanka-based Commercial Bank of Ceylon releases a statement admitting that a "hacking attack" on its website resulted in a successful intrusion. However, no customer data has been compromised.
• Gatecoin May 15, 2016 Hong Kong-based Bitcoin and Ethereum exchange service Gatecoin announces the theft of a large amount of cryptocurrency following what they believe was a server intrusion. The company says it lost 250 Bitcoin ($114,500) and 185,000 Ethereum ($1,850,000), totaling over $2,000,000.
• Central Bank of Tunisia May 15, 2016 • [ hack, ddos, finance ] Anonymous has taken down five more banks as part of OpIcarus. The targets are the Bank of France, the Central bank of the United Arab Emirates, the Central Bank of Tunisia, the Central Bank of Trinidad and Tobago, and the Philippine National Bank.