Globe Life
June 14, 2024
•[ hack, finance ]
American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data after breaching one of its web portals.
Truist Bank
June 13, 2024
•[ hack, leak, finance ]
Truist Bank, a leading U.S. commercial bank, confirms this week that its systems were breached in an October 2023 cyberattack after a threat actor posted some of the company's data for sale on a hacking forum.
QuoteWizard
June 10, 2024
•[ financial, misconfiguration, finance ]
Financial services firm LendingTree confirms that QuoteWizard, one of its subsidiaries, was potentially affected by a cybersecurity incident following a wider attack on customers of data storage company Snowflake.
Loopring
June 9, 2024
•[ financial, misconfiguration, finance ]
Loopring announces a security breach involving its two-factor authentication service Guardian, affecting two wallets, with one of them was drained of about $5 million.
CoinGecko
June 7, 2024
•[ leak, finance ]
CoinGecko, the worlds largest independent cryptocurrency data aggregator, experiences a data breach through its third-party email platform, GetResponse.
Gemini
June 3, 2024
•[ hack, finance ]
Cryptocurrency exchange Gemini warns it suffered a data breach incident caused by a cyberattack at its Automated Clearing House (ACH) service provider, whose name was not disclosed.
Gala Games
May 21, 2024
•[ financial, finance ]
An attacker steals more than $206 million and returns $22 million worth of cryptocurrency the day after from Gala Games.
Forth
May 21, 2024
•[ leak, finance ]
Debt relief solutions provider Forth (Set Forth) notifies 1.5 million individuals that their personal information was compromised in a May 2024 data breach.
Pump.fun
May 16, 2024
•[ insider, financial, finance ]
Solana-based memecoin launchpad Pump.fun says that a former employee was behind an exploit that resulted in the misappropriation of approximately 12,300 SOL, valued at about $1.9 million.
Banco Santander
May 14, 2024
•[ leak, misconfiguration, finance ]
Banco Santander announces it suffered a data breach impacting customers after an unauthorized actor accessed a database hosted by one of its third-party service providers. ShinyHunters claims Santander breach, selling data for 30M customers
Adam Griffin
May 6, 2024
•[ social, phishing, finance ]
Adam Griffin, a crypto investor is robbed of nearly $500,000 in cryptocurrencies after a scammer called using a real Google phone number to warn his Gmail account was being hacked, sent email security alerts directly from google.com, and ultimately seized control over the account by convincing him to click yes to a Google prompt on his mobile device.
Undisclosed crypto investor
May 3, 2024
•[ financial, hack, phishing ]
An individual loses around $71 million worth of bitcoin in what appears to be an address poisoning attack. A week later the author of the attack returns the stolen bounty.
Firstmac Limited
May 1, 2024
•[ leak, finance ]
Firstmac Limited warns customers that it suffered a data breach a day after the new Embargo cyber-extortion group leaked over 500GB of data allegedly stolen from the firm.
Pike Finance
April 26, 2024
•[ financial, finance ]
Pike Finance suffers its second exploit in three days, resulting in the loss of $1.68 million worth of digital assets.
Pacific Guardian Life Insurance
April 25, 2024
•[ financial, hack, finance ]
Pacific Guardian Life Insurance says that 165,000 people had their financial info stolen in 2023 attack.
Hedgey Finance
April 19, 2024
•[ financial, finance ]
Token infrastructure platform Hedgey Finance undergoes two simultaneous exploits that resulted in a combined loss of $44.7 million
Munchables
March 26, 2024
•[ hack, financial, finance ]
The Munchables blockchain-based game is attacked, with about $62 million worth of cryptocurrency was stolen from the game. Few hours after the attacker agrees to return the stolen funds.
VNDirect Securities Company (VNDirect)
March 26, 2024
•[ hack, finance ]
VNDirect, one of Vietnam's largest brokerages, begins the process of restoring its systems after a cyberattack that forced it to suspend trading transactions.
Crypt investors in Hong Kong
March 25, 2024
•[ social, phishing, finance ]
The Securities and Futures Commission of Hong Kong warns against entities operating under the name "HKCEXP" and "EDY" saying the names falsely poses as an SFC-registered entities.
On Q Financial
March 14, 2024
•[ ransomware, malware, finance ]
On Q Financial discloses a breach due to the ScreenConnect CVE-2024-1709 and CVE-2024-1708 vulnerabilities. The BianLian ransomware group claims responsibility for the attack.
