Christensen Group Insurance
October 10, 2022
•[ phishing, data leak ]
Company posted 24-02-2025 notice about 2022 email-account breach; data breach letters now being sent.
Government Communications Headquarters
August 24, 2022
•[ insider threat, data leak ]
Former intern admitted unauthorized transfer of top secret data from Gchq.
Advanced Computer Software Group Ltd
August 4, 2022
•[ ransomware, data leak ]
Ico fined Advanced after 2022 ransomware that disrupted Nhs services and leaked data.
Vultr
July 8, 2022
•[ data leak, third-party ]
In March 2023, the "AI-first global cloud platform" Vultr disclosed a security incident at a third-party vendor. Dating back to the previous year, the incident was attributed to the ActiveCampaign email marketing service provider and resulted in the exposure of 188k unique email addresses. A small number of records also included name, IP address and country of origin. No Vultr systems or additional customer data were impacted. Vultr subsequently self-submitted the impacted data to HIBP.
Russian Ministry of Construction, Housing and Utilities (minstroyrf.gov.ru)
June 4, 2022
•[ hacking, defacement, ransomware ]
The Russian Ministry of Construction, Housing and Utilities (minstroyrf.gov.ru) is hacked. When searched on the internet, the site's address leads to a sign in the Ukrainian language that read- Glory to Ukraine.'' The attackers also demanded ransom to prevent the leaking of personal data of the site users.
Russian Ministry of Construction, Housing and Utilities (minstroyrf.gov.ru)
June 4, 2022
•[ hack, defacement, ransom ]
The Russian Ministry of Construction, Housing and Utilities (minstroyrf.gov.ru) is hacked. When searched on the internet, the sites address leads to a sign in the Ukrainian language that read- Glory to Ukraine.'' The attackers also demanded ransom to prevent the leaking of personal data of the site users.
Медицинская лаборатория Гемотест (Gemotest)
April 22, 2022
•[ data leak ]
In April 2022, Russian pharmaceutical company Gemotest suffered a data breach that exposed 31 million patients. The data contained 6.3 million unique email addresses along with names, physical addresses, dates of birth, passport and insurance numbers. Gemotest was later fined for the breach.
KinoKong
March 25, 2021
•[ data leak ]
In March 2021, the Russian online streaming service KinoKong suffered a data breach that was later redistributed as part of a larger corpus of data. The breach exposed over 800k unique email addresses along with names, usernames, IP addresses and MD5 password hashes.
Westend Dental
October 20, 2020
•[ ransomware, data leak, exposed PHI ]
A ransomware attack attributed to Medusa Locker encrypted patient data on Westend Dentals servers in October 2020. The breach went unreported for years, leading to a 20242025 Indiana AG and HHS settlement requiring patient notification. There is no clear evidence of exfiltration beyond encryption, but PHI exposure was confirmed.
Utair
March 21, 2019
•[ data leak ]
In August 2020, news broke of a data breach of Russian airline Utair that dated back to the previous year. The breach contained over 400k unique email addresses along with extensive personal information including names, physical addresses, dates of birth, passport numbers and loyalty program details.
Knuddles.de
November 23, 2018
•[ hack, data leak, social network ]
Following a hack that resulted in leaking about 808,000 email addresses and over 1.8 million usernames and passwords, a social network website in Germany received a fine of EUR 20,000 from the Baden-W rttemberg Data Protection Authority.
Brazilian Triathlon Confederation (cbtri.org.br)
August 5, 2016
•[ data leak, personal information, financial details ]
Anonymous leaked personal, financial and login details from domains like'the Brazilian Confederation of Modern Pentathlon (pentatlo.org.br), official Site of the Brazilian Handball Confederation (brasilhandebol.com.br),Brazilian Confederation of Boxing (cbboxe.com.br) and Brazilian Triathlon Confederation (cbtri.org.br).
Web Hosting Talk
July 1, 2016
•[ data leak ]
In July 2016, the Web Hosting Talk forum suffered a data breach that was subsequently listed for sale. The breach of the vBulletin based forum exposed 515k user records including usernames, email addresses, IP addresses and salted MD5 password hashes.
norfolkadmirals.com
March 30, 2016
•[ data leak, personal information ]
gift2death posts online the personal information of roughly 250 Norfolk Admirals hockey team customers.
visit-jy.com
March 18, 2016
•[ hacktivism, data leak, protest ]
Hacktivists from KarmaSec hack the server of Japan's Yamaguchi Prefecture Tourism Promotion Division (visit-jy.com) and leak a trove of data protesting in animal cruelty in the country.
Fidelity Group (http://www.fidelitygroup.com/)
September 22, 2015
•[ hacking, extortion, data leak ]
A group of hackers that calls itself "Hack for Trump" claims to have hacked the website of Fidelity Group and threaten it would make the stolen data public unless Fidelity pays $30,000.
thesnappening.org
October 15, 2014
•[ data leak, hacking, defacement ]
thesnappening.org, the hosting site for the pictures leaked from Snapchat after The Snappening affair, is hacked by Team Danny, and the details of his founder Mudit Grover, are posted on the hacked page.
The Botting Network
August 12, 2012
•[ data leak ]
In August 2012, the forum for making money with botting "The Botting Network" suffered a data breach that exposed 96k user records. The now defunct vBulletin forum leaked 96k email addresses, usernames, dates of birth and salted MD5 password hashes.
China Software Developer Network
December 21, 2011
•[ data leak ]
In 2011, the China Software Developer Network (CSDN) suffered a data breach that exposed over 6M user records. The data included email addresses alongside usernames and plain text passwords.
