Full List

Search

Recent Breaches

• TalkTalk October 23, 2015 • [ hack, technology ] TalkTalk, a UK phone and broadband provider, warns its 4 million customers that attackers could have gained access to their names, addresses, credit card and bank details, dates of birth, phone numbers, email addresses and TalkTalk account information.
• Essex Police October 23, 2015 • [ hack, government ] The Essex Police Twitter Account (@EssexPoliceUK) is hacked and posts a bogus tweet directing the user to a page hosting an offensive picture.
• Gamerzplanet October 23, 2015 In approximately October 2015, the online gaming forum known as Gamerzplanet was hacked and more than 1.2M accounts were exposed. The vBulletin forum included IP addresses and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked.
• Dutch Safety Board October 22, 2015 • [ espionage, government ] A threat actor attempted to compromise the networks of the Dutch Safety Board, the group charged with investigating the crash of Malaysia Airlines Flight 17, which crashed in Ukraine.
• MPGH October 22, 2015 • [ hack, sqlinjection, technology ] In October 2015, the multiplayer game hacking website MPGH was hacked and 3.1 million user accounts disclosed. The vBulletin forum breach contained usernames, email addresses, IP addresses and salted hashes of passwords.
• Blue House October 21, 2015 • [ espionage, government ] South Korea's intelligence agency reports that North Korean hackers accessed servers belonging to the Blue House, the executive office of South Korea, and stole data from computers belonging to members of the nation's legislature.
• EyeBuyDirect October 21, 2015 • [ hack, financial, misconfiguration ] An undisclosed number of individuals are notified that unauthorized access was gained to EyeBuyDirect's website and personal information, including payment card data, may have been compromised.
• Ku Klux Klan October 21, 2015 • [ hack, ddos ] A hacker, who goes by the name sgtbilko420, takes down several websites affiliated with the KKK and online stores selling racist paraphernalia. Targets include the KKK, the Westboro Baptist Church, a site linked to the Islamic State and even Steven Harper.
• NapsGear October 21, 2015 • [ leak, retail ] In October 2015, the anabolic steroids retailer NapsGear suffered a data breach. An extensive amount of personal information on 287k customers was exposed including email addresses, names, addresses, phone numbers, purchase histories and salted MD5 password hashes.
• http://www October 20, 2015 • [ hack, magento, technology ] And this is the example of a website hacked exploiting a Magento Vulnerability: a hacker dubbed ph1k3 hacks gobol.in and claims to have exploited a Magento vulnerability.
• South Korean Foreign Ministry October 20, 2015 • [ espionage, government ] A threat actor compromised government networks affiliated with members of the South Korean parliament. The threat actor, believed to be North Korea, also attempted to compromise the Foreign Ministry, Defense Ministry, and the Blue House.
• Passport Office Kolkata October 20, 2015 • [ hack, government ] Another episode of the Cyber War between India and Pakistan: a group of Pakistani hackers dubbed Team Pak Cyber Experts defaces the official website of the Passport Office Kolkata (passportofficekolkata.in).
• NetEase October 19, 2015 In October 2015, the Chinese site known as NetEase (located at 163.com) was reported as having suffered a data breach that impacted hundreds of millions of subscribers. Whilst there is evidence that the data itself is legitimate (multiple HIBP subscribers confirmed a password they use is in the data), due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and plain text passwords. Read more about Chinese data breaches in Have I Been Pwned.
• Narita International Airport October 18, 2015 • [ hack, ddos, technology ] In the name of #OpKillingBay, the online protest against the dolphin slaughter, the Anonymous take down the two main Japanese Airports: Narita International Airport (www.narita-airport.jp) and Chubu Centrair International Airport (www.centrair.jp).
• John Brennan October 18, 2015 A teen hacker with the nickname CWA claims to have hacked an AOL e-mail account belonging to John Brennan, the director of the CIA. The attacker claims to have obtained sensitive documents and releases a small spreadsheet with alleged personal information.
• Woods Hole Oceanographic Institution October 16, 2015 • [ espionage, education ] Woods Hole Oceanographic Institution declares to have suffered a "sophisticated, targeted attack" that allegedly originated from China. The breach turns out to have started back in February 2013.
• Peppermill Resort Spa Casino October 16, 2015 • [ financial, malware, retail ] An undisclosed number of individuals are being notified that an attack may have compromised credit and debit cards used between October 2014 and February 2015 at the front desk of the Reno, Nevada-based Peppermill Resort Spa Casino.
• Yellowfront Grocery October 16, 2015 • [ financial, malware, retail ] Yellowfront Grocery in Damariscotta, Maine, notifies its customers via Facebook that it had experienced a point-of-sale (POS) breach on Oct 23.
• EA October 15, 2015 Account details of some 600 Electronic Arts (EA) customers are apparently leaked on Pastebin. The company has yet to confirm that the leak is genuine, but they are "taking steps to secure any account that has an EA or Origin user ID that matches the usernames on this list."
• Unknown Organization October 15, 2015 • [ hack, technology ] An Islamist hacker called Abdellah Elmaghribi defaces Adult Magazine, an online blog about graduate students having sex.