Portend Breaches

University of Central Florida October 1, 2016 • [ financial, malware, education ] A malware infection is to blame for a payment card data breach affecting at least 230 University of Central Florida students.

Pokémon Negro October 1, 2016 • [ leak, technology ] In approximately October 2016, the Spanish Pokmon site Pokmon Negro suffered a data breach. The attack resulted in the disclosure of 830k accounts including email and IP addresses along with plain text passwords. Pokmon Negro did not respond when contacted about the breach.

Large LED video screen billboard in South Jakarta September 30, 2016 • [ hack, technology ] An unknown hacker or a group of hackers hack into the computer system of a large LED video screen billboard in the Kebayoran Baru district of South Jakarta and replace the advertisement on the screen with pornographic content for a short period of time.

newseasims September 30, 2016 • [ leak, technology ] A hacker going by the handle of "Websites Hunter" hacks newseasims.com, a website that offers custom content for Sims video games from Electronic Arts, and leaks personal details of 118,000 customers/users.

Newsweek September 30, 2016 Newsweek suspects that Russian hackers are to blame for the crash of its website, after it published an article about Donald Trump's company secretly conducting business in Cuba in the 1990s.

Bellingcat September 29, 2016 • [ espionage, technology ] ThreatConnect reveals that investigative journalism group Bellingcat, that helped to investigate the downing of flight MH17 over eastern Ukraine in 2014 have been targeted in a series of sophisticated attacks by pro-Russia group Fancy Bear.

feverclan September 29, 2016 • [ hack, leak ] pr0jekkt hacks feverclan.com and dumps the data of 50,000 users.

Jive September 29, 2016 Software house Jive resets customers passwords after the company discovered a data breach.

Justdate.com September 29, 2016 • [ leak, technology ] An alleged breach of the dating website Justdate.com began circulating in approximately September 2016. Comprised of over 24 million records, the data contained various personal attributes such as email addresses, dates of birth and physical locations. However, upon verification with HIBP subscribers, only a fraction of the data was found to be accurate and no account owners recalled using the Justdate.com service. This breach has consequently been flagged as fabricated; it's highly unlikely the data was sourced from Justdate.com.

Pippa Middleton September 27, 2016 Pippa Middleton falls fallen victim to an iCloud hacker after an anonymous seller calling himself 'Crafty Cockney' offers to sell 3,000 private photographs of her and fiance James Matthews to the press for 50,000.

WestPark Capital September 27, 2016 The Dark Overlord leak around 20 internal files online from Los Angeles-based WestPark Capital, as retaliation for the bank's CEO not accepting their "handsome proposal".

Aipai.com September 27, 2016 In September 2016, data allegedly obtained from the Chinese gaming website known as Aipai.com and containing 6.5M accounts was leaked online. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and MD5 password hashes. Read more about Chinese data breaches in Have I Been Pwned.

Berat Albayrak September 26, 2016 • [ hack, government ] The RedHack collective claims to have hacked personal email accounts of Turkey's Energy Minister and President Erdogan's son-in-law, Berat Albayrak.

OVH September 26, 2016 Hosting company OVH is subject to the biggest attack DDoS known to date, with peaks of over 1 Tb per second of traffic.

i-dressup September 26, 2016 • [ hack, misconfiguration, technology ] Un unknown hacker downloads more than 2.2 million of improperly stored account credentials from i-dressup.com, a social hangout website for teenage girls.

Ministry of Foreign Affairs of Azerbaijan September 25, 2016 Armenian hackers from Monte Melkonian Cyber Army (MMCA) leak personal details of several Azeri government officials and also deface several Azeri embassy and government sites to celebrate 25 years of Armenian independence.

Democratic Congressional Campaign Committee September 24, 2016 Guccifer 2.0 releases a new cache of documents from the DCCC (Democratic Congressional Campaign Committee).

apple.afsmith.bm September 23, 2016 Office supplies firm AF Smith suspends sales on its Apple website amid fears over credit-card hacking.

Unnamed Afghan mobile operator September 23, 2016 Der Spiegel reveals that the Bundeswehr's (German Armed Forces) special cyber unit is believed to have conducted the nation's first known "offensive" cyber operation in 2015, when it hacked into the network of an Afghan mobile network provider.

floridabar September 22, 2016 • [ hack, government ] A hacker or hackers associated with a former Palm Beach County Sheriff's Office deputy who has a long-standing dispute with Florida law enforcement that appears to have gotten him raided by the FBI managed to access and acquire what appears to be the Florida Bar Association's entire database.

Recent Breaches