Full List

Search

Recent Breaches

• Ezaki Glico Co. March 7, 2016 Ezaki Glico Co. reveals that personal data on users of its online shopping site may have been compromised following unauthorized accesses. Up to 83,194 records of personal data may have been stolen, including 43,744 that contained credit card information.
• Unnamed South Korean news-clipping firm March 5, 2016 • [ hack, technology ] South Korean officials launch an investigation into whether an Islamic State militant group hacked a South Korean news-clipping firm's computer network. Data on 20 South Koreans was reportedly acquired in the attack.
• Donald Trump's voicemail March 5, 2016 Donald Trump's voicemail is allegedly hacked by members of Anonymous. The messages are published on Gawker.
• 55 New Jersey police officers March 5, 2016 Hackers from the Caliphate Cyber Army release the information of 55 New jersey Police Officers, including home addresses, phone numbers and working locations.
• Mansueto Ventures March 4, 2016 • [ financial, phishing, technology ] Another victim of a payroll phish: unknown criminals obtain the IDs of 90 percent of the employees of Mansueto Ventures and use the data to file the fraudulent tax returns.
• GCI March 4, 2016 • [ financial, leak, phishing ] GCI notifies more than 2,500 employees that their W-2 forms were stolen in an apparent phishing scam in February.
• Moneytree March 4, 2016 • [ financial, phishing, social ] Moneytree is the latest company to alert current and former employees that their tax data, including Social Security numbers, salary and address information, was accidentally handed over directly to scam artists.
• Rosen Hotels & Resorts March 4, 2016 • [ financial, malware, retail ] US chain Rosen Hotels & Resorts is the latest to confirm a malware-based breach of its payment processing systems. The breach covered an extended period between September 2, 2014 to February 18, 2016.
• Unnamed global shipping company March 3, 2016 An incident detailed in the recently released Verizon Data Breach Digest report, unveiled this week at the RSA security conference reveals that a global shipping company has been the victim of high-seas piracy aided by a network intrusion.
• Cox Communications March 3, 2016 Cox Communications investigates a possible data breach after alleged names, email addresses, phone numbers, and other information relating to some 40,000 employees is currently advertised on The Real Deal Market, a marketplace specialising in stolen data.
• cplusplustutor March 2, 2016 • [ hack, education ] An unknown hacker hacks cplusplustutor.com and dumps 5,596 usernames and hashed passwords.
• GIEI March 1, 2016 • [ espionage, malware, government ] The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the targets is a phone belonging to the Interdisciplinary Group of Independent Experts (GIEI). GIEI is investigating the 2014 Iguala Mass Disappearance and was targeted shortly after criticizing the Mexican government for interfering in the investigation.
• Seagate March 1, 2016 • [ social, phishing, technology ] Seagate is the last victim of a payroll phish. A Seagate employee sends the data to an outside e-mail address after receiving an e-mail purportedly from Seagate's CEO Stephen Luczo requesting 2015 W-2 data for current and former Seagate employees.
• Maritime Trade Information Sharing Centre, Gulf of Guinea (MTISC-GoG), March 1, 2016 BIMCO [Baltic and International Maritime Council] and The Standard Club issue a warning regarding an alleged security breach in the Maritime Trade Information Sharing Centre, Gulf of Guinea (MTISC-GoG), potentially resulting in the release of ships' data to pirates.
• Bank of North Dakota March 1, 2016 • [ hack, finance ] Members of the @TheFamilyMethod claim to have hacked the Bank of North Dakota and dump the records of 124 transactions.
• sktorrent March 1, 2016 @0x1Taylor hacks sktorrent.eu and dumps more than 117,000 usernames and passwords.
• CD Projekt RED March 1, 2016 In March 2016, Polish game developer CD Projekt RED suffered a data breach. The hack of their forum led to the exposure of almost 1.9 million accounts along with usernames, email addresses and salted SHA1 passwords.
• Mate1 February 29, 2016 • [ leak, misconfiguration, technology ] A hacker on the dark web forum Hell claims to have sold the email addresses and plaintext passwords of over 27 million users of dating site Mate1.com.
• Islamic State February 29, 2016 • [ hack, ddos, government ] The US Secretary of Defense Ash Carter reveals that the US military is currently waging a cyber-offensive to "interrupt [and] disrupt ISIL's command and control, to cause them to lose confidence in their networks, to overload their network so that they can't function, and do all of these things that will interrupt their ability to command and control forces there, control the population and the economy."
• Nival February 29, 2016 In February 2016, the Russian gaming company Nival was the target of an attack which was consequently detailed on Reddit. Allegedly protesting "the foreign policy of Russia in regards to Ukraine", Nival was one of several Russian sites in the breach and impacted over 1.5M accounts including sensitive personal information.