Maine state government
March 30, 2026
•[ phishing, email account compromise, unauthorized access ]
State officials discovered that a Maine government employees email account had been accessed by cybercriminals, who used it to send phishing messages to internal staff and external contacts. The Security Operations Center secured the account, shut down the suspicious activity, and stopped additional unauthorized emails. No evidence of personal or sensitive data access was reported.
CFD Investments, Inc.
March 15, 2025
•[ unauthorized access, email account compromise, data leak ]
Unauthorized access to an employee email account at CFD Investments, Inc. resulted in exposure of client personal and financial information between March 15 and May 9, 2025; affected individuals were notified beginning January 28, 2026.
Saint Anthony Hospital
February 6, 2025
•[ unauthorized access, email account compromise, healthcare data breach ]
Saint Anthony Hospital reported that on February 6 2025 an unauthorized party accessed two employee email accounts, exposing personal and health information of approximately 146,108 patients; the breach was confirmed in February 2026 and notifications were sent in March 2026.
baltic-course.com
March 19, 2020
•[ website compromise, email account compromise, influence campaign ]
Ghostwriter, a suspected Russia-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
