Full List

Search

Recent Breaches

• Chinanews June 4, 2015 Chinanews, one of China's biggest news agencies is defaced. The attacker leaves a one-sentence message on the agency's home page giving the number of a bank account at the industrial and Commercial Bank of China.
• Intimacy Bra Fit Stylists June 4, 2015 • [ hack, misconfiguration, retail ] Lingerie seller Intimacy Bra Fit Stylists notifies an undisclosed number of individuals that its e-commerce server was compromised and that personal information may have been misappropriated.
• Pentagon June 4, 2015 Secretary of Defense Ash Carter reveals that a Russian threat actor compromised a legacy unclassified network at the Department of Defense.
• Holiday Valley Resort June 2, 2015 • [ financial, malware, retail ] New York-based Holiday Valley Resort announces that malware may have compromised payment cards used at any of the resort's POS devices between October 2014 and June.
• Piatt County, Illinois June 2, 2015 • [ hack, government ] The pro-Palestinian hacktivist collective AnonGhost defaces the official website of Piatt County, Illinois along with the website of the county's Sheriff office, election office and Highway Department.
• AeroGrow International June 2, 2015 • [ financial, malware, manufacturing ] AeroGrow International, Inc. notifies an undisclosed number of indidividals who shopped on its website AeroGarden.com that malware was likely used to infiltrate online servers, and that payment card data may have been compromised.
• Heartland Dental June 2, 2015 Heartland Dental notifies an undisclosed number of indiviudals that unauthorized access was gained to a limited portion of its IT systems, and that personal data may have been compromised.
• Medical Information Engineering June 2, 2015 • [ hack, healthcare ] Medical Information Engineering (MIE), a medical software company, notifies customers of a cybersecurity incident that provided unauthorized access to its network and some patients' personal health information.
• Eroticy June 1, 2015 In mid-2016, it's alleged that the adult website known as Eroticy was hacked. Almost 1.4 million unique accounts were found circulating in late 2016 which contained a raft of personal information ranging from email addresses to phone numbers to plain text passwords. Whilst many HIBP subscribers confirmed their data was legitimate, the actual source of the breach remains inconclusive. A detailed account of the data has been published in the hope of identifying the origin of the breach.
• Office of the President May 31, 2015 • [ espionage, malware, government ] Vietnamese threat actor Ocean Lotus has compronised the websites of numerous entitities in Southeast Asia to be used for watering-hole attacks. Some of the organizations have also been targeted with malware aiming to install backdoors on their systems. The group has targeted ASEAN, China, Cambodia, Laos, and the Philippines.
• thaimassagemodel May 30, 2015 yPeRtRoN hacks an adult web site (thaimassagemodel.com) and dumps 4,614 records with usernames and hashed passwords.
• gaana May 28, 2015 Gaana, one of the top music streaming sites in India with more than 7.5 million monthly users is hacked by a Pakistani hacker called Mak Man, and its user database is exposed.
• copart May 28, 2015 • [ hack, automotive ] Copart.com automobile auction website, notifies its users that its computer systems were breached by an unknown attacker, who gained access to sensitive information belonging to its members.
• Japan universal public pension system May 28, 2015 • [ hack, leak, government ] The organization that manages Japan's universal public pension system confirms that approximately 1.25 million personal records are compromised by hackers in a recent targeted attack. Blue Termite, an alleged Chinese threat actor, may be responsible.
• brief May 26, 2015 • [ hack, leak, healthcare ] An anonymous hacker hacks brief.org.uk and dumps 7,800 usernames and passwords.
• Commack School District May 26, 2015 • [ hack, education ] Commack School District's computer system is hacked by 3 students.
• Internal Revenue Service May 26, 2015 Unknown hackers illegitimately access the Get Transcript service of the IRS (Internal Revenue Service) and obtain the information on more than 100,000 US taxpayers from February to mid-May.
• Hex-Rays May 25, 2015 • [ hack, technology ] Hex-Rays, developers of IDA (Interactive Disassembler) sends an email notification to its customers about a recent attack that may have resulted in the compromise of some license keys along with the web forum and the quotation system.
• Chris Jericho May 25, 2015 Chris Jericho's Twitter account is hacked by a group called the Galvanize Mob. The attackers post some offensive messages.
• Embassy of Nepal in Washington May 24, 2015 • [ hack, government ] The official website of the Embassy of Nepal in Washington (nepalembassyusa.org) is hacked by Moroccan Islamic Union-Mail, a group of Moroccan hackers who leave a message against the American invasion of Iraq and what happened afterwards.