-
Neiman Marcus
January 1, 2014
hacked
-
-
Sony Pictures
January 1, 2014
•
[ hack ]
hacked
-
-
Supervalu
January 1, 2014
•
[ hack, retail ]
hacked
-
Trump Hotels
January 1, 2014
hacked
-
Uber
January 1, 2014
poor security
-
UPS
January 1, 2014
•
[ hack ]
hacked
-
-
Record Assist LLC
January 1, 2014
•
[ hack, finance ]
Record Assist LLC notifies of an unauthorized access possibly compromising residents' names, addresses, credit card numbers and Social Security numbers.
-
Astropid
December 19, 2013
•
[ social, leak, forum ]
In December 2013, the vBulletin forum for the social engineering site known as "AstroPID" was breached and leaked publicly. The site provided tips on fraudulently obtaining goods and services, often by providing a legitimate "PID" or Product Information Description. The breach resulted in nearly 6k user accounts and over 220k private messages between forum members being exposed.
-
Torrent Invites
December 12, 2013
In December 2013, the torrent site Torrent Invites was hacked and over 352k accounts were exposed. The vBulletin forum contained usernames, email and IP addresses, birth dates and salted MD5 hashes of passwords.
-
Pixel Federation
December 4, 2013
•
[ hack, leak ]
In December 2013, a breach of the web-based game community based in Slovakia exposed over 38,000 accounts which were promptly posted online. The breach included email addresses and unsalted MD5 hashed passwords, many of which were easily converted back to plain text.
-
Vodafone
November 30, 2013
•
[ hack, technology ]
In November 2013, Vodafone in Iceland suffered an attack attributed to the Turkish hacker collective "Maxn3y". The data was consequently publicly exposed and included user names, email addresses, social security numbers, SMS message, server logs and passwords from a variety of different internal sources.
-
XSplit
November 7, 2013
•
[ hack, technology ]
In November 2013, the makers of gaming live streaming and recording software XSplit was compromised in an online attack. The data breach leaked almost 3M names, email addresses, usernames and hashed passwords.
-
We Heart It
November 3, 2013
•
[ hack, technology ]
In November 2013, the image-based social network We Heart It suffered a data breach. The incident wasn't discovered until October 2017 when 8.6 million user records were sent to HIBP. The data contained user names, email addresses and password hashes, 80% of which were salted SHA-256 with the remainder being MD5 with no salt.
-
Mecho Download
October 31, 2013
In October 2013, the (now defunct) downloads website "Mecho Download" suffered a data breach that exposed 438k records. Data from the vBulletin based website included email and IP addresses, usernames and passwords stored as salted MD5 hashes.
-
Adobe
October 4, 2013
•
[ hack, misconfiguration, technology ]
In October 2013, 153 million Adobe accounts were breached with each containing an internal ID, username, email, encrypted password and a password hint in plain text. The password cryptography was poorly done and many were quickly resolved back to plain text. The unencrypted hints also disclosed much about the passwords adding further to the risk that hundreds of millions of Adobe customers already faced.
-
iMesh
September 22, 2013
•
[ hack, technology ]
In September 2013, the media and file sharing client known as iMesh was hacked and approximately 50M accounts were exposed. The data was later put up for sale on a dark market website in mid-2016 and included email and IP addresses, usernames and salted MD5 hashes.
-
Crack Community
September 9, 2013
•
[ leak, sqlinjection, technology ]
In late 2013, the Crack Community forum specialising in cracks for games was compromised and over 19k accounts published online. Built on the MyBB forum platform, the compromised data included email addresses, IP addresses and salted MD5 passwords.
