-
Mansueto Ventures
March 4, 2016
•
[ financial, phishing, technology ]
Another victim of a payroll phish: unknown criminals obtain the IDs of 90 percent of the employees of Mansueto Ventures and use the data to file the fraudulent tax returns.
-
GCI
March 4, 2016
•
[ financial, leak, phishing ]
GCI notifies more than 2,500 employees that their W-2 forms were stolen in an apparent phishing scam in February.
-
Moneytree
March 4, 2016
•
[ financial, phishing, social ]
Moneytree is the latest company to alert current and former employees that their tax data, including Social Security numbers, salary and address information, was accidentally handed over directly to scam artists.
-
Rosen Hotels & Resorts
March 4, 2016
•
[ financial, malware, retail ]
US chain Rosen Hotels & Resorts is the latest to confirm a malware-based breach of its payment processing systems. The breach covered an extended period between September 2, 2014 to February 18, 2016.
-
Unnamed global shipping company
March 3, 2016
An incident detailed in the recently released Verizon Data Breach Digest report, unveiled this week at the RSA security conference reveals that a global shipping company has been the victim of high-seas piracy aided by a network intrusion.
-
Cox Communications
March 3, 2016
Cox Communications investigates a possible data breach after alleged names, email addresses, phone numbers, and other information relating to some 40,000 employees is currently advertised on The Real Deal Market, a marketplace specialising in stolen data.
-
cplusplustutor
March 2, 2016
•
[ hack, education ]
An unknown hacker hacks cplusplustutor.com and dumps 5,596 usernames and hashed passwords.
-
GIEI
March 1, 2016
•
[ espionage, malware, government ]
The Mexican government is suspected of using NSO Group spyware to compromise the personal devices of journalists, lawyers, activists, scientists, politicians, and civil society organizations. One of the targets is a phone belonging to the Interdisciplinary Group of Independent Experts (GIEI). GIEI is investigating the 2014 Iguala Mass Disappearance and was targeted shortly after criticizing the Mexican government for interfering in the investigation.
-
Seagate
March 1, 2016
•
[ social, phishing, technology ]
Seagate is the last victim of a payroll phish. A Seagate employee sends the data to an outside e-mail address after receiving an e-mail purportedly from Seagate's CEO Stephen Luczo requesting 2015 W-2 data for current and former Seagate employees.
-
Maritime Trade Information Sharing Centre, Gulf of Guinea (MTISC-GoG),
March 1, 2016
BIMCO [Baltic and International Maritime Council] and The Standard Club issue a warning regarding an alleged security breach in the Maritime Trade Information Sharing Centre, Gulf of Guinea (MTISC-GoG), potentially resulting in the release of ships' data to pirates.
-
Bank of North Dakota
March 1, 2016
•
[ hack, finance ]
Members of the @TheFamilyMethod claim to have hacked the Bank of North Dakota and dump the records of 124 transactions.
-
sktorrent
March 1, 2016
@0x1Taylor hacks sktorrent.eu and dumps more than 117,000 usernames and passwords.
-
CD Projekt RED
March 1, 2016
In March 2016, Polish game developer CD Projekt RED suffered a data breach. The hack of their forum led to the exposure of almost 1.9 million accounts along with usernames, email addresses and salted SHA1 passwords.
-
Mate1
February 29, 2016
•
[ leak, misconfiguration, technology ]
A hacker on the dark web forum Hell claims to have sold the email addresses and plaintext passwords of over 27 million users of dating site Mate1.com.
-
Islamic State
February 29, 2016
•
[ hack, ddos, government ]
The US Secretary of Defense Ash Carter reveals that the US military is currently waging a cyber-offensive to "interrupt [and] disrupt ISIL's command and control, to cause them to lose confidence in their networks, to overload their network so that they can't function, and do all of these things that will interrupt their ability to command and control forces there, control the population and the economy."
-
Nival
February 29, 2016
In February 2016, the Russian gaming company Nival was the target of an attack which was consequently detailed on Reddit. Allegedly protesting "the foreign policy of Russia in regards to Ukraine", Nival was one of several Russian sites in the breach and impacted over 1.5M accounts including sensitive personal information.
-
KM.RU
February 29, 2016
•
[ leak, technology ]
In February 2016, the Russian portal and email service KM.RU was the target of an attack which was consequently detailed on Reddit. Allegedly protesting "the foreign policy of Russia in regards to Ukraine", KM.RU was one of several Russian sites in the breach and impacted almost 1.5M accounts including sensitive personal information.
-
Mate1.com
February 29, 2016
In February 2016, the dating site mate1.com suffered a huge data breach resulting in the disclosure of over 27 million subscribers' information. The data included deeply personal information about their private lives including drug and alcohol habits, incomes levels and sexual fetishes as well as passwords stored in plain text.
-
Time Warner Cable Business Class Managed Security Solutions portal
February 28, 2016
Members of the TeaMp0isoN hacking crew hack into the Time Warner Cable (TWC) Business Class website, steal its database and dump online 4,191 records containing IDs, usernames, email addresses, and encrypted passwords.
-
Solar UK Ltd
February 28, 2016
•
[ hack, energy ]
Hackers from Cyber Caliphate supporting the Islamic State group deface Solar UK Ltd. a small solar energy company, in revenge for a drone strike which killed Junaid Hussain.