Full List

Search

Recent Breaches

• MPGH October 22, 2015 • [ hack, sqlinjection, technology ] In October 2015, the multiplayer game hacking website MPGH was hacked and 3.1 million user accounts disclosed. The vBulletin forum breach contained usernames, email addresses, IP addresses and salted hashes of passwords.
• Blue House October 21, 2015 • [ espionage, government ] South Korea's intelligence agency reports that North Korean hackers accessed servers belonging to the Blue House, the executive office of South Korea, and stole data from computers belonging to members of the nation's legislature.
• EyeBuyDirect October 21, 2015 • [ hack, financial, misconfiguration ] An undisclosed number of individuals are notified that unauthorized access was gained to EyeBuyDirect's website and personal information, including payment card data, may have been compromised.
• Ku Klux Klan October 21, 2015 • [ hack, ddos ] A hacker, who goes by the name sgtbilko420, takes down several websites affiliated with the KKK and online stores selling racist paraphernalia. Targets include the KKK, the Westboro Baptist Church, a site linked to the Islamic State and even Steven Harper.
• NapsGear October 21, 2015 • [ leak, retail ] In October 2015, the anabolic steroids retailer NapsGear suffered a data breach. An extensive amount of personal information on 287k customers was exposed including email addresses, names, addresses, phone numbers, purchase histories and salted MD5 password hashes.
• http://www October 20, 2015 • [ hack, magento, technology ] And this is the example of a website hacked exploiting a Magento Vulnerability: a hacker dubbed ph1k3 hacks gobol.in and claims to have exploited a Magento vulnerability.
• South Korean Foreign Ministry October 20, 2015 • [ espionage, government ] A threat actor compromised government networks affiliated with members of the South Korean parliament. The threat actor, believed to be North Korea, also attempted to compromise the Foreign Ministry, Defense Ministry, and the Blue House.
• Passport Office Kolkata October 20, 2015 • [ hack, government ] Another episode of the Cyber War between India and Pakistan: a group of Pakistani hackers dubbed Team Pak Cyber Experts defaces the official website of the Passport Office Kolkata (passportofficekolkata.in).
• NetEase October 19, 2015 In October 2015, the Chinese site known as NetEase (located at 163.com) was reported as having suffered a data breach that impacted hundreds of millions of subscribers. Whilst there is evidence that the data itself is legitimate (multiple HIBP subscribers confirmed a password they use is in the data), due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and plain text passwords. Read more about Chinese data breaches in Have I Been Pwned.
• Narita International Airport October 18, 2015 • [ hack, ddos, technology ] In the name of #OpKillingBay, the online protest against the dolphin slaughter, the Anonymous take down the two main Japanese Airports: Narita International Airport (www.narita-airport.jp) and Chubu Centrair International Airport (www.centrair.jp).
• John Brennan October 18, 2015 A teen hacker with the nickname CWA claims to have hacked an AOL e-mail account belonging to John Brennan, the director of the CIA. The attacker claims to have obtained sensitive documents and releases a small spreadsheet with alleged personal information.
• Woods Hole Oceanographic Institution October 16, 2015 • [ espionage, education ] Woods Hole Oceanographic Institution declares to have suffered a "sophisticated, targeted attack" that allegedly originated from China. The breach turns out to have started back in February 2013.
• Peppermill Resort Spa Casino October 16, 2015 • [ financial, malware, retail ] An undisclosed number of individuals are being notified that an attack may have compromised credit and debit cards used between October 2014 and February 2015 at the front desk of the Reno, Nevada-based Peppermill Resort Spa Casino.
• Yellowfront Grocery October 16, 2015 • [ financial, malware, retail ] Yellowfront Grocery in Damariscotta, Maine, notifies its customers via Facebook that it had experienced a point-of-sale (POS) breach on Oct 23.
• EA October 15, 2015 Account details of some 600 Electronic Arts (EA) customers are apparently leaked on Pastebin. The company has yet to confirm that the leak is genuine, but they are "taking steps to secure any account that has an EA or Origin user ID that matches the usernames on this list."
• Unknown Organization October 15, 2015 • [ hack, technology ] An Islamist hacker called Abdellah Elmaghribi defaces Adult Magazine, an online blog about graduate students having sex.
• Permanent Court of Arbitration in The Hague October 15, 2015 • [ espionage, malware, government ] Bloomberg reveals that the web page of the Permanent Court of Arbitration in The Hague was comporomised with malware in July, during the the third day of the hearing on the territorial dispute in the South China. Suspects are directed to China.
• Royal Institution of Chartered Surveyors October 14, 2015 • [ hack, leak, education ] HTGzSecurity hacks ricsasia.org (Royal Institution of Chartered Surveyors) and dumps 3,410 records.
• Official website the Belgian Prime Minister October 14, 2015 • [ hack, ddos, government ] The Belgian branch of the Anonymous collective takes down the official websites of Belgian Prime Minister Charles Michel, the Brussels parliament and the website of the Federal Public Service of the Interior.
• Unknown Organization October 13, 2015 A hacker going with the online handle of Kuroi SH defaces several domains of the United States-based Uniformed Services University and leaks 2014 login credentials online.