-
-
Czech Foreign Ministry
January 31, 2017
Czech Foreign Minister Lubomir Zaoralek says that hackers breached dozens of email accounts at the Czech Foreign Ministry in an attack resembling one against the U.S. Democratic Party.
-
Xbox 360 ISO Forums
January 31, 2017
•
[ hack, malware ]
An unidentified hacker reportedly breaches the XBOX 360 and PlayStation Portable ISO forums compromising 2.5 million gamer accounts. The breach is unconfirmed.
-
Freedom Hosting II
January 31, 2017
•
[ hack, misconfiguration, technology ]
In January 2017, the free hidden service host Freedom Hosting II suffered a data breach. The attack allegedly took down 20% of dark web sites running behind Tor hidden services with the attacker claiming that of the 10,613 impacted sites, more than 50% of the content was child pornography. The hack led to the exposure of MySQL databases for the sites which included a vast amount of information on the hidden services Freedom Hosting II was managing. The impacted data classes far exceeds those listed for the breach and differ between the thousands of impacted sites.
-
Polish Foreign Ministry
January 30, 2017
•
[ hack, government ]
The Polish daily newspaper Rzeczpospolita reveals that the hack against the Polish Foreign Ministry that occurred in December was probably orchestrated by APT28.
-
Romantik Seehotel Jaegerwirt
January 30, 2017
One of Europe's top hotels, Romantik Seehotel Jaegerwirt, admits they had to pay thousands in Bitcoin ransom to cybercriminals who managed to hack their electronic key system, locking hundreds of guests out of their rooms until the money was paid.
-
DataCamp
January 30, 2017
•
[ leak, education ]
In December 2018, the data science website DataCamp suffered a data breach of records dating back to January 2017. The incident exposed 760k unique email and IP addresses along with names and passwords stored as bcrypt hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly. The data was provided to HIBP by a source who requested it to be attributed to "BenjaminBlue@exploit.im".
-
CNN Facebook page
January 29, 2017
OurMine hacks multiple Facebook accounts of CNN, CNN International, and CNN Politics.
-
WWE Universe Twitter account
January 28, 2017
OurMine hacks multiple Twitter accounts associated with the World Wrestling Entertainment group, including that of WWE Universe, WWE NXT, WWE Network, Summer Slam as well as wrestlers John Cena and Triple H. WWE Tumblr page is also compromised.
-
Emsisoft
January 28, 2017
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling with their illegal activities.
-
Australian Nuclear Science and Technology Organisation (ANSTO)
January 27, 2017
•
[ hack, government ]
The Australian Nuclear Science and Technology Organisation (ANSTO) investigate a computer security breach at the Australian Synchrotron that saw hackers steal scientists' usernames and passwords.
-
Sunrun
January 27, 2017
•
[ social, phishing, energy ]
Solar panel maker Sunrun is hit with a spearphishing attack, impersonating the CEO Lynn Jurich, that gets away with the company employee W-2 information.
-
D.C. Police
January 27, 2017
•
[ ransomware, malware, government ]
Ransomware infected 70 percent of storage devices that record data from D.C. police surveillance cameras eight days before President Trump's inauguration, forcing major citywide reinstallation efforts.
-
Princeton Pain Management
January 27, 2017
•
[ hack, healthcare ]
Princeton Pain Management is notifying 4,668 patients of a hack that was detected on November 28. Although they found no evidence that data were removed from their system, protected health information (PHI) was accessed.
-
Hong Kong securities brokers
January 26, 2017
•
[ hack, ddos, finance ]
Hong Kong's securities regulator says that brokers in the city have suffered major DDoS cyber attacks and warns of possible further incidents across the industry.
-
AlphaBay
January 26, 2017
•
[ leak, misconfiguration, technology ]
About 218,000 unencrypted private messages posted to the AlphaBay dark web marketplace are accessed and released to the public.
-
Grey Eagle Resort and Casino
January 26, 2017
•
[ hack ]
Grey Eagle Resort and Casino is hacked and the attackers threaten to dump hundreds of gigabytes of data. The Casino confirms the breach.
-
Campbell County Health
January 26, 2017
•
[ social, phishing, healthcare ]
Social Security numbers and W-2 information for about 1,400 employees who worked over the past year at Campbell County Health are mistakenly released to someone impersonating a hospital executive.
-
High Fidelity
January 26, 2017
High Fidelity users receive an e-mail from Philip Rosedale, CEO and founder of the new social VR world, announcing the compromise of a staff email account in late December and Early January.
-
Odessa School District
January 26, 2017
•
[ social, phishing, education ]
The Odessa School District is hit by a phishing scam aimed to steal employees' personal W-2 forms.