Full List

Search

Recent Breaches

• Pittsburgh Regional Transit December 19, 2024 • [ ransomware, malware ] Pittsburgh Regional Transit (PRT) is hit with a ransomware attack.
• Ukrainian State Registers December 19, 2024 • [ hack, government ] Suspected Russian threat actors from the XakNet collective launch one of the largest cyberattacks on Ukraines state services in recent months.
• Boone County School District December 19, 2024 • [ social, phishing, education ] Personal data from current and former students in Boone County School District are compromised in a phishing scheme.
• Undisclosed Malaysian educational institution December 19, 2024 • [ financial, malware, education ] Researchers from Trend Micro discover a Python-Based NodeStealer version targeting Facebook Ads Manager.
• PowerSchool December 19, 2024 • [ hack, education ] Education software firm PowerSchool confirms it suffered a cybersecurity incident that allowed a threat actor to steal the personal information of students and teachers from school districts using its PowerSchool SIS platform.
• Carruth Compliance Consulting December 19, 2024 • [ data leak, third-party breach ] Third-Party Retirement Plan Administrator Reported December Intrusion Exfiltrating School Employee Data.
• Baker School District December 19, 2024 • [ data leak, supply chain ] PowerSchool national breach (Dec 1924, 2024) impacted districts incl. Baker; district announced vendor notifications and monitoring steps.
• Parascript December 19, 2024 • [ data leak ] Software firm disclosed breach following unauthorized access to networked systems and data.
• Merck Sharp & Dohme LLC December 19, 2024 • [ data leak, supply chain attack ] Merck stated it was informed that its data was found within files impacted by a security incident at vendor Graebel Companies, Inc. After internal review, Merck determined certain current and former employees personal information was included in the impacted data and began notifying affected individuals. Reported potentially impacted elements included names and financial account information. The underlying vendor incident involved unauthorized access to or taking of certain files from the vendors network during a defined window in December 2024, with subsequent file review and customer notifications occurring later.
• Military personnel in Ukraine December 18, 2024 • [ social, malware, government ] The Computer Emergency Response Team of Ukraine (CERT-UA) discloses that a threat actor tracked as UAC-0125 is leveraging Cloudflare Workers to trick military personnel in the country into downloading malware disguised as Army+, a mobile app that was introduced by the Ministry of Defence back in August 2024 in an effort to make the armed forces go paperless.
• "Tony" (undisclosed crypto investor) December 18, 2024 • [ social, phishing, finance ] A scammer impersonating Google manages to phish 45 bitcoins approximately $4,725,000 at todays value from Tony, a 42-year-old professional from northern California.
• Sturgis Hospital December 18, 2024 • [ hack, healthcare ] Sturgis Hospital reported that unauthorized access was detected in part of its network in December 2024. The hospital determined that files containing personal and medical data may have been viewed or copied. No encryption or operational disruption was reported.
• GemPad December 17, 2024 The Gem Pad token launchpad is exploited for an estimated loss of $2.2M in crypto assets.
• French Governmental and Critical Infrastructure December 16, 2024 • [ hack, ddos, government ] The hacktivist collective Holy League launches a DDoS campaign against French governmental and critical infrastructure.
• Undisclosed Targets in Germany December 16, 2024 • [ hack, ddos ] The hacktivist collective Holy League launches a DDoS campaign against undisclosed targets in Germany.
• Kaiser Permanente employees December 15, 2024 • [ social, malware, healthcare ] Researchers at Malwarebytes detect a malicious campaign targeting Kaiser Permanente employees via Google Search Ads.
• Concession Peugeot December 15, 2024 • [ ransomware, malware, retail ] Cicada3301 ransomware group claims responsibility for a data breach targeting Concession Peugeot (concessions.peugeot.fr), a prominent French automotive dealership linked to the Peugeot brand. The group claims to have stolen 35GB of sensitive data
• Two individuals in Serbia December 15, 2024 • [ hack, malware ] A Serbian journalist and an activist have their phones hacked by local authorities using a cellphone-unlocking device made by forensic tool maker Cellebrite.
• Microsoft/Google December 15, 2024 • [ hack, sqlinjection, technology ] The GhostRedirector group stealthily hijacked Windows servers using malwareRungan and Gamshento inject SEO content visible only to Googlebot, boosting gambling site rankings without user impact. Servers were targeted via SQL injection and privilege escalation exploits.
• Sunflower Medical Group December 15, 2024 • [ ransomware, data leak ] The Rhysida ransomware group attacked Sunflower Medical Group around 2024-12-15, exfiltrating approximately 3 TB of patient and administrative data and disrupting clinical systems. Suspicious activity was detected 2025-01-07 and public disclosure followed.