MICROS
August 8, 2016
•[ financial, malware, technology ]
The Carbanak Gang appears to have compromised a customer support portal for companies using Oracle's MICROS point-of-sale credit card payment systems, and used that access to steal administrative credentials and implant malicious code on 700 terminals.
Steemit
July 14, 2016
•[ hack, financial, technology ]
Social media site Steemit temporarily shuts down after a major hack. The attackers compromise 260 accounts and make off with $85,000 worth of cryptocurrency.
Top Eight Banks in Taiwan including Bank of Taiwan, Chang Hwa Bank, First Bank.
July 12, 2016
•[ financial, malware, finance ]
The top eight banks in Taiwan have been forced to shut down activity on hundreds of ATMs after a coordinated group of thieves used malware to steal NT$70 million ($2.17m, 1.64m, 1.9m) in cash.
Hard Rock Hotel and Casino Las Vegas
June 29, 2016
•[ financial, hack, malware ]
The Hard Rock Hotel and Casino Las Vegas notifies guests of "certain restaurant and retail outlets" located at its Las Vegas casino that hackers breached payments systems extracting credit card data.
Noodles & Company
June 29, 2016
•[ financial, malware, retail ]
Noodles & Company announces that malware infected its backend card processing system and maybe have compromised customer credit and debit card data collected between January 31, 2016 and June 2, 2016.
Unnamed Ukrainian bank
June 25, 2016
•[ financial, hack, finance ]
Another hack carried on via the SWIFT messaging system: this time hackers have stolen $10 million from an unnamed Ukrainian bank, according to an ISACA report.
Tien Phong Bank
May 13, 2016
•[ financial, malware, finance ]
SWIFT confirms a new attack in which attackers managed to illegally transfer funds from a member bank by using its system. Further details, including the bank name are revealed two days after. The victim is the Tien Phong Bank in Vietnam.
UAE Investbank
May 6, 2016
•[ financial, leak, finance ]
A 10GB file has been published online that purports to hold sensitive financial data on tens of thousands of customers belonging to UAE Investbank. A Turkish group dubbed Bozkurt claims responsibility for the attack.
Saint Agnes Medical Center
May 5, 2016
•[ financial, phishing, healthcare ]
2,800 employees of the Saint Agnes Medical Center are impacted by a possible identity theft after scammers got the W-2's of everyone employed by the hospital.
Union League Club
May 3, 2016
•[ financial, insider, malware ]
Union League Club says it is working with the FBI to investigate a security breach involving guests' credit card information. An employee accused to have installed malicious software is fired.
The Grand Sierra Resort
April 25, 2016
•[ financial, malware, retail ]
The Grand Sierra Resort is the latest hospitality entity to disclose a data breach involving customers' credit card information. In this case, there appear to be two time frames during which cards used at their food and retail locations may have been compromised; for a one-month period in 2014 and again during a 5-month period in 2015.
ADP
April 19, 2016
•[ financial, misconfiguration, finance ]
Identity thieves steal tax and salary data from payroll giant ADP by registering accounts in the names of employees at more than a dozen customer firms. ADP says the incidents occurred because the victim companies all mistakenly published sensitive ADP account information online.
Coinroll Bitcoin Casino
April 17, 2016
•[ financial, misconfiguration, finance ]
Coinroll Bitcoin Casino admits that several users had the funds on their online accounts stolen. The breach could be related to an open MongoDB.
Trump Hotel Collection
April 4, 2016
•[ financial ]
The Trump Hotel Collection suffers another breach of its credit card system.
LAZ Parking
March 15, 2016
•[ leak, financial, hack ]
LAZ Parking reveals that tax and revenue information for about 14,000 employees may have been stolen by an "unknown individual.
The City of Baltimore
March 14, 2016
•[ financial, government ]
The city of Baltimore investigates how the personal information of dozens of city employees was stolen and used to file fraudulent tax returns.
Mansueto Ventures
March 4, 2016
•[ financial, phishing, technology ]
Another victim of a payroll phish: unknown criminals obtain the IDs of 90 percent of the employees of Mansueto Ventures and use the data to file the fraudulent tax returns.
GCI
March 4, 2016
•[ financial, leak, phishing ]
GCI notifies more than 2,500 employees that their W-2 forms were stolen in an apparent phishing scam in February.
Moneytree
March 4, 2016
•[ financial, phishing, social ]
Moneytree is the latest company to alert current and former employees that their tax data, including Social Security numbers, salary and address information, was accidentally handed over directly to scam artists.
Rosen Hotels & Resorts
March 4, 2016
•[ financial, malware, retail ]
US chain Rosen Hotels & Resorts is the latest to confirm a malware-based breach of its payment processing systems. The breach covered an extended period between September 2, 2014 to February 18, 2016.
