Portend Breaches

AOD Federal Credit Union August 8, 2024 • [ data leak ] AOD Federal Credit Union disclosed that an unauthorized actor accessed its network between Aug 89, 2024; on Mar 4, 2025 the investigation confirmed potential access/acquisition of personal data and consumer notifications began in late March 2025.

City of Killeen August 7, 2024 • [ ransomware, malware, government ] The city of Killeen, Texas reveals to be recovering from a BlackSuit ransomware attack.

Nexera August 7, 2024 The decentralized finance (DeFi) protocol Nexera falls victim to a significant exploit, resulting in the theft of approximately $1.8 million worth of digital assets.

CreditRiskMonitor August 7, 2024 • [ leak, finance ] CreditRiskMonitor, a provider of intelligence and analytics for credit and supply chain professionals, discloses a data breach impacting employees and contractors.

McLaren Health Care August 6, 2024 • [ ransomware, malware, healthcare ] IT and phone systems at McLaren Health Care hospitals are disrupted following an attack linked to the INC Ransom ransomware operation.

Port of Tyne August 6, 2024 The Port of Tyne confirms its site was down for some time, following a distributed denial of service (DDOS) attack.

Florida’s Sumter County Sheriff’s Office August 6, 2024 • [ ransomware, malware, government ] Floridas Sumter County Sheriffs Office confirms that it experienced a Rhysida ransomware attack.

St. Anthony Hospital (SSM Health) August 6, 2024 • [ malware, data leak, insider threat ] On August 6 2024, Jeffrey Bowie, CEO of cybersecurity firm Veritaco, allegedly installed malware on computers at St. Anthony Hospital (SSM Health) in Oklahoma City. The malware took screenshots roughly every 20 minutes and transmitted them to an external address. The activity was detected and contained quickly, and hospital officials reported no patient or clinical data access. Bowie was arrested on April 16 2025.

Beech Acres Parenting Center August 5, 2024 • [ hack, leak, healthcare ] Beech Acres Parenting Center, a nonprofit in Cincinnati, Ohio, reported a data breach involving unauthorized access from AprilAugust 2024 that exposed employee and client personal information, including SSNs and health-related data. No service disruption or encryption was reported.

Dispatch centers in the Highland Lakes and across Central Texas August 4, 2024 • [ hack, ddos, government ] A reported cyberattack disrupts 9-1-1 service at dispatch centers in the Highland Lakes and across Central Texas for over five hours.

Mobile Guardian August 4, 2024 A threat actor breaches Mobile Guardian, a digital classroom management platform used worldwide, and remotely wipes data from at least 13,000 student's iPads and Chromebooks.

City of Roseburg August 4, 2024 • [ data leak ] City reported an August 4, 2024 breach; forensic work through Jan 6, 2025 confirmed exposure and notices sent in late Feb 2025.

Grand Palais Réunion des musées nationaux (Rmn) August 3, 2024 • [ hack, government ] The Grand Palais Runion des muses nationaux (Rmn) in France warns that it suffered a cyberattack.

Avis August 3, 2024 • [ leak, automotive ] American car rental giant Avis notifies over 299,000 customers that unknown attackers breached one of its business applications last month and stole some of their personal information.

Not SOCRadar August 3, 2024 • [ leak, misconfiguration, technology ] In August 2024, over 332M rows of email addresses were posted to a popular hacking forum. The post alleged the addresses were scraped from cybersecurity firm SOCRadar, however an investigation on their behalf concluded that "the actor merely utilised functionalities inherent in the platform's standard offerings, designed to gather information from publicly available sources". There is no suggestion the incident compromised SOCRadar's security or posed any risk to their customers. In total, the data set contained 282M unique addresses of valid email address format.

Convex Finance August 1, 2024 Decentralized finance protocol Convergence suffers a smart contract exploit that allows a threat actor to mint and sell $210,000 worth of native tokens and steal $2,000 in unclaimed staking rewards,

Sable International August 1, 2024 Sable International, a prominent U.K.-based company offering immigration services and legal resources, warns officials in multiple countries that a recent cyberattack may have exposed sensitive customer information. The BianLian ransomware gang claims responsibility for the attack and starts emailing customers about the incident, likely to put pressure on the firm to pay a ransom.

Iran's Ministry of Information and Communications Technology August 1, 2024 • [ hack, ddos, government ] Israel-based hacktivists from the group WeRedEvils take credit for an ongoing internet outage in Iran.

Former President Donald Trump’s campaign August 1, 2024 • [ hack, government ] The FBI is investigating the alleged hack of former President Donald Trumps campaign, days after the campaign blamed Iran for a breach.

Biden-Harris campaign August 1, 2024 • [ hack, espionage, government ] The FBI is also investigating the alleged hack of the Biden-Harris campaign by threat actors from Iran

Recent Breaches