Michigan Avenue Immediate Care
May 16, 2022
•[ hack, leak, healthcare ]
Michigan Avenue Immediate Care is hacked by an unknown threat actor, and more that 580 GB personal information about ~43.000 patients is leaked.
Port and Railway Projects Service of JSC UMMC
May 14, 2022
•[ leak, hack ]
In name of #OpRussia the Anonymous collective leaks a 106 GB archive that contains nearly 77,500 emails from Port and Railway Projects Service of JSC UMMC.
Achinsk City Government
May 14, 2022
•[ hack, leak, government ]
In name of #OpRussia the Anonymous collective steals over 7,000 emails from the Achinsk city government and leak an 8.5GB archive.
Cameron County Elections Department
May 12, 2022
•[ hack, government ]
The Cameron County Elections Department acknowledges a security breach in which someone gained access to files containing the personal identifying information of staff members and poll workers handled by Easy Vote, a company that provides poll worker management software.
Cardiovascular Associates (CVA)
May 12, 2022
•[ hack, healthcare ]
Cardiovascular Associates (CVA) files a notice of data breach after the company learned that certain systems within its network were subject to unauthorized access.
The Springs Living
May 12, 2022
•[ hack, misconfiguration, healthcare ]
The Springs Living reports a data breach after an unauthorized party gained access to sensitive information on the company's computer network.
Ukrainian News Agencies
May 9, 2022
•[ hack, ddos, technology ]
Large-scale DDoS attack against leading telecommunications companies in Ukraine resulted in partial inaccessibility of their websites.
Russian TV
May 9, 2022
•[ hack, misconfiguration, technology ]
During the Russian President Putin's speech at today's "Victory Day" military parade, pro-Ukrainian hacking groups defaced the online Russian TV schedule page to display anti-war messages.
Fortress
May 8, 2022
•[ hack, financial, finance ]
The operators of decentralized finance (DeFi) lending and credit protocol Fortress announce that about $3 million worth of cryptocurrency was stolen during an attack on third-party infrastructure.
Law Enforcement Inquiry and Alerts
May 8, 2022
•[ hack, government ]
The U.S. Drug Enforcement Administration (DEA) says it is investigating reports that hackers gained unauthorized access to the Law Enforcement Inquiry and Alerts database.
City of Quincy
May 7, 2022
•[ hack, government ]
The City of Quincy is hit with a cyber attack.
Community Psychiatry Management
May 7, 2022
•[ hack, phishing, healthcare ]
Community Psychiatry Management, which does business under the name Mindpath Health, files notice of a data breach after discovering that an unauthorized party was able to gain access to two employee email accounts containing confidential patient information
BlackBerry Fans
May 6, 2022
•[ hack, misconfiguration, technology ]
In May 2022, the Chinese BlackBerry enthusiasts website BlackBerry Fans suffered a data breach that exposed 174k member records. The impacted data included usernames, email and IP addresses and passwords stored as salted MD5 hashes.
Official OpenSea Discord Channel
May 6, 2022
•[ hack, phishing, finance ]
OpenSea, a non-fungible token marketplace, is the victim of a hack on its main Discord channel: threat actors post fake announcements about partnerships between OpenSea and other projects.
Ziedot
May 4, 2022
•[ hack, ddos, technology ]
A Latvian national news agency and another latvian news organization were hit by DDoS attacks on May 04. This attack was the largest of a spate of attacks that had affected the news agency since the start of the war.
Russian websites managed by government, military, and news organizations.
May 4, 2022
•[ hack, ddos, government ]
Researchers from Crowdstrike reveal that Docker images with a download count of over 150,000 have been used to run DDoS attacks against a dozen of Russian and Belarusian websites managed by government, military, and news organizations.
Heroku
May 4, 2022
•[ hack, misconfiguration, technology ]
Salesforce-owned Heroku performs a forced password reset on a subset of user accounts. The company admits that the stolen GitHub integration OAuth tokens from last month further led to the compromise of an internal customer database.
Allwell Behavioral Health Services
May 3, 2022
•[ hack, healthcare ]
Allwell Behavioral Health Services announces that a computer system used to store quality assurance information related to the treatment of patients was accessed by an unauthorized individual.
Government Agencies of Germany
May 2, 2022
•[ hack, ddos, government ]
Over several days, the websites of German authorities and ministries have been targeted in a series of DDoS attacks. the targets included the Ministry of Defence, the Bundestag, the Federal Police and several state police authorities.
Government Agencies of Moldova
May 1, 2022
•[ hack, ddos, government ]
A number of web pages belonging to public authorities were subjected to DDoS attacks. The attacks compromise equipment and networks, by exploiting security vulnerabilities and enrolling them in botnet network.
