Russell Stover Chocolates
August 30, 2019
•[ financial, malware, retail ]
Russell Stover Chocolates reveals that a malware infection to its POS systems compromised customer's data between February 9, 2019 and August 7, 2019.
U.K.-based energy firm
August 30, 2019
•[ financial, social, energy ]
An insurance firm (Euler Hermes Group SA) reveals that criminals used artificial intelligence-based software to impersonate a CEO's voice and demand a fraudulent transfer of 220,000 ($243,000) back in March.
Portland Public Schools
August 19, 2019
•[ social, financial, phishing ]
The Portland Public Schools district falls victim of a BEC scam costing around $2.9 million (but manages to recover the stolen amount).
Hy-Vee
August 14, 2019
•[ financial, retail ]
Supermarket chain Hy-Vee publishes a warning to customers, after staff discovered a security breach on some of its point-of-sale (PoS) systems.
National Baseball Hall of Fame
August 7, 2019
•[ financial, hack, malware ]
The website for the National Baseball Hall of Fame is hacked to include a MageCart script that stole the payment information of customers who purchased items on the site. The infection occurred between November 15, 2018 and May 14, 2019.
City of Naples, Florida
August 2, 2019
•[ financial, social, phishing ]
The City of Naples, Florida, loses $700,000 after a spear phishing attack.
City of Griffin
July 3, 2019
•[ financial, phishing, government ]
Over $800,000 are stolen from the City of Griffin, Georgia, by scammers in a BEC (Business Email Compromise) attack by redirecting two transactions to their own bank accounts.
7-Eleven Japan
July 2, 2019
•[ financial, retail ]
Approximately 900 customers of 7-Eleven Japan have lost a collective of 55 million ($510,000) after hackers hijacked their 7pay app accounts and made illegal charges in their names.
Geraldton Catholic School
June 19, 2019
•[ financial, education ]
Geraldton Catholic School confirms it was the victim of a cyber attack, saying bank account and credit card information may have been stolen, including signatures scanned when parents paid school fees.
Leicester City FC
May 31, 2019
•[ financial, hack, retail ]
Leicester City FC notifies people who used its online shop that their financial details have been stolen by hackers, including credit card numbers and CVVs. The hack occurred between 23 April and 4 May, 2019.
LibertyBus
May 18, 2019
•[ financial, phishing, leak ]
Passwords and log-in details for hundreds of LibertyBus customers are obtained by attackers, who used a spoof website to divert those wanting to top up their pre-paid cards.
Forbes
May 15, 2019
•[ financial, malware, technology ]
Researchers from Bad Packets discover that hackers injected the Forbes' subscription website with a Magecart script which collects payment card data customers introduce on the checkout page and exfiltrates it to a server controlled by the attackers.
WIRED
May 9, 2019
•[ financial, hack, misconfiguration ]
Cond Nast notifies about 1,100 WIRED subscribers of a breach involving their payment information, when an unauthorized party accessed a third-party vendor's systems between April 14 and April 17, 2019.
Amazon
May 8, 2019
•[ financial, hack, retail ]
Amazon.com Inc. said it was hit by an "extensive" fraud, revealing that unidentified hackers were able to siphon funds from merchant accounts over six months last year.
Saint Ambrose Catholic Parish
April 29, 2019
•[ financial, hack, social ]
Hackers steal $1.75 million from the Saint Ambrose Catholic Parish following a successful BEC attack which was discovered on April 17 after payments related to the church's Vision 2020 project were not received by a contractor.
Puma Australia
April 29, 2019
•[ financial, malware, retail ]
Puma Australia is the latest victim of a Magecart attack.
Scott County Schools
April 24, 2019
•[ financial, phishing, education ]
Scott County Schools announce that the district was the victim of a $3.7 million online scam, when an undisclosed vendor told the district it never was paid for an invoice.
Atlanta Hawks
April 20, 2019
•[ financial, hack, malware ]
The online shop for the Atlanta Hawks professional NBA basketball team has malicious code injected into (Magecart Infection).
VSDC
April 11, 2019
•[ financial, malware, technology ]
The website of the free multimedia editor VSDC is breached again to distribute a banking trojan and an info stealer (Win32.Bolik.2 and KPOT stealer).
Users in Chile
April 10, 2019
•[ financial, malware, finance ]
Researchers from SI-LAB reveal the details of a cyber attack carried out via a variant of the EMOTET banking trojan, targeting users in Chile.
