-
Madison Square Garden
November 22, 2016
•
[ hack, financial, retail ]
Madison Square Garden Co. admits that hackers may have stolen payment card data at Madison Square Garden, The Theater at Madison Square Garden, Radio City Music Hall, Beacon Theatre and The Chicago Theatre from Nov. 9, 2015 to Oct. 24, 2016.
-
Unknown Organization
November 21, 2016
The Hungarian Human Rights Foundation website is hacked and the attackers manage to get access to over 20,000 accounts and personal information, including phone numbers and home addresses.
-
TheCounter
November 21, 2016
TheCounter, a third party Twitter site was hacked over the weekend and various celebrity and media accounts taken over to promote an "increase Twitter followers" service.
-
Atlantis, Paradise Island
November 21, 2016
Atlantis, Paradise Island announces a recent security incident that may have compromised the security of payment information between March 9, 2016 and October 22, 2016.
-
Eastern Indian Regional Council
November 20, 2016
•
[ hack, government ]
Kapustkiy breaks into the Eastern Indian Regional Council and accesses the data of 17,000 students.
-
RankWatch
November 19, 2016
•
[ leak, misconfiguration, technology ]
In approximately November 2016, the search engine optimisation management company RankWatch exposed a Mongo DB with no password publicly whereupon their data was exfiltrated and posted to an online forum. The data contained 7.4 million unique email addresses along with names, employers, phone numbers and job titles in a table called "us_emails". When contacted and advised of the incident, RankWatch would not reveal the purpose of the data, where it had been acquired from and whether the data owners had consented to its collection. The forum which originally posted the data explained it as being "in the same vein as the modbsolutions leak", a large list of corporate data allegedly used for spam purposes.
-
mobilita
November 18, 2016
Kapustkiy hacks an Italian government website (mobilita.gov.it) and dumps 45,000 records.
-
Three Mobile
November 18, 2016
•
[ hack, phishing, technology ]
Three Mobile admits that hackers have successfully accessed its customer upgrade database after using an employee login. 6 million customers' private information is at risk.
-
USOC (United States Olympic Committee)
November 18, 2016
The U.S. Olympic Committee (USOC) notifies individuals who participated in the 100-Days Out event in April 2016 that their personal information has been acquired by an unauthorized individual who gained access to the email account of a contractor who ran security clearances for the event.
-
Mega
November 18, 2016
•
[ hack, technology ]
The Amn3s1a Team hacking group releases a data dump containing what the group claims is nearly 2GB of source code stolen from several Mega.nz servers.
-
Unknown Organization
November 17, 2016
•
[ hack, misconfiguration, government ]
The Canadian army's public recruitment website (forces.ca) is hacked and briefly redirects visitors to the official website of the Chinese government.
-
Mark Zuckerberg's Pinterest account
November 17, 2016
•
[ hack, technology ]
OurMine hack Mark Zuckerberg's Pinterest Account and post a message suggesting they could help him with his online security.
-
Gorilla Glue
November 17, 2016
•
[ hack, manufacturing ]
The Dark Overlord claims to have stolen a wealth of company and personal information (500Gb) from US adhesive, glue, and tape company Gorilla Glue.
-
CashCrate
November 17, 2016
•
[ hack, md5 ]
In June 2017, news broke that CashCrate had suffered a data breach exposing 6.8 million records. The breach of the cash-for-surveys site dated back to November 2016 and exposed names, physical addresses, email addresses and passwords stored in plain text for older accounts along with weak MD5 hashes for newer ones.
-
Unknown Organization
November 16, 2016
Confidential personal records of over 34 million residents in the Indian state of Kerala are compromised, when an Indian man living in Tokyo posts them on Facebook after the Indian government failed to address security flaws in website.
-
Three unnamed firms in the hospitality sector
November 15, 2016
Trustwave researchers spot the Carbanak cybergang using a new socially engineered trick to spread point-of-sale (POS) malware to businesses in the hospitality industry.
-
FIFA Ultimate Team
November 14, 2016
Anthony Clark is charged by the Northern Texas District Court with a count of Conspiracy to Commit Wire Fraud for his role in a scheme to automatically generate and then resell the digital coins used to purchase perks in FIFA Ultimate Team on the PlayStation and Xbox.
-
Michigan State University
November 13, 2016
Michigan State University announces that a university server and a database containing information on some 400,000 faculty, staff and students has been accessed by an unauthorised third party.
-
AdultFriendFinder Networks
November 13, 2016
•
[ leak, hack ]
Here we are again: adult dating and entertainment company FriendFinder Networks has reportedly been hacked in a massive data breach exposing more than 412 million accounts and user credentials collected over two decades.
-
24luv
November 12, 2016
•
[ hack, misconfiguration, technology ]
The hacktivist known as ElSurveillance is back with its operation #EscortsOffline and two more data dumps from two dating sites: 24luv.com (92,937 users' email addresses and plain-text passwords) and freedateusa.com (127,395 email addresses and plain-text passwords).