Tuloso Midway Independent School District
March 16, 2022
•[ hack, phishing, education ]
Tuloso Midway Independent School District discloses that one employee's email account was accessed without authorization.
Ukrainian Red Cross
March 16, 2022
•[ hack, healthcare ]
The Ukrainian Red Cross reported a hack of their website on 16 March which was restored the same day. No personal data of beneficiaries was stored on the website. Only the information component of the site was affected.
Undetermined
March 15, 2022
•[ hack, finance ]
The Anonymous collective claims to have hacked more than 1300 network cameras from Russia/Belarus
Federal Security Service (FSB)
March 15, 2022
•[ hack, ddos, government ]
The Anonymous collective takes responsibility for taking down top Russian government websites in a series of DDoS attacks. The list of the targets include the official website of the Federal Security Service (FSB), the Stock Exchange, the Analytical Center for the Government of the Russian Federation, and the Ministry of Sport of the Russian Federation.
Regional Ministry of Health
March 15, 2022
•[ hack, misconfiguration, government ]
A hacker dubbed Spielerkid89 remotely accesses a computer belonging to a regional Ministry of Health in Russia, exploiting a VNC Server without authentication
RiverKids Pediatric Home Health
March 15, 2022
•[ hack, phishing, healthcare ]
RiverKids Pediatric Home Health notifies 3,494 patients that some of their protected health information has potentially been viewed or stolen as a result of an email security incident.
Israel Government web sites
March 14, 2022
•[ hack, ddos, government ]
Israel's National Cyber Directorate reveals that the country suffered a cyber attack that briefly took down a number of government websites.
Newman Regional Health (NRH)
March 14, 2022
•[ hack, healthcare ]
Newman Regional Health (NRH) notifies 52,224 patients that unauthorized individuals have gained access to certain employee email accounts that contained protected health information.
Undetermined
March 14, 2022
•[ hack, malware, finance ]
ESET researchers have uncovered yet another destructive data wiper that was used in attacks against a limited number of organizations in Ukraine. No code similarities to either HermeticWiper or IsaacWiper were identified. There's evidence to suggest that the threat actors behind CaddyWiper infiltrated the target's network before executing the wiper.
East Tennessee Children's Hospital (ETCH)
March 13, 2022
•[ hack, healthcare ]
East Tennessee Children's Hospital is the victim of an information technology security issue
Rosneft Deutschland
March 12, 2022
•[ hack, malware, energy ]
The German Federal Office for Information Security (BSI) confirms that the local subsidiary of the Russian energy giant Rosneft has been hit by a cyberattack, after the Anonymous collective claims to have stolen 20 terabytes of data.
Rostec
March 11, 2022
•[ hack, ddos, manufacturing ]
The website of a Russian aerospace and defense conglomerate was allegedly hit by a cyberattack that forced it offline for several hours. Earlier in the day, multipme domains had been assigned for targeting on the IT Army of Ukraine's website.
Roskomnadzor
March 10, 2022
•[ hack, government ]
Anonymous breached the database of a Russian federal agency responsible for supervision of communication, information technology and mass media, and then released 820 GB of data from a sector of the agency:
- Over 360,000 files from the network, totaling 526.9 GB. Some as recent as March 5, 2022.
- Two directories containing the raw data files (290.6 GB). One appears to be a legal research database that was last modified in 2020. The other appears to be a database for HR procedures.
North Alabama Bone & Joint Clinic, P.C. ("NABJC")
March 9, 2022
•[ hack, healthcare ]
North Alabama Bone & Joint Clinic, P.C. ("NABJC") confirms that some employee email accounts had been accessed without authorization.
Russian Federal State Statistics Service
March 8, 2022
•[ hack, malware, government ]
Russian federal agencies' websites compromised in a supply chain attack. Attackers compromised the stats widget used to track the number of visitors. The attackers published their own content and blocked access to the websites.
Mercado Libre
March 8, 2022
•[ hack, leak, retail ]
Argentinian e-commerce giant Mercado Libre confirms "unauthorized access" to a part of its source, adding that data of around 300,000 of its users was accessed by threat actors.
Russian Federal Penitentiary Service
March 8, 2022
•[ hack, government ]
The Anonymous collective claims to have defaced the official website of the Russian Federal Penitentiary Service.
Numerous Ukraine sites, including the Ministry of Foreign Affairs, Ministry of Internal Affairs
March 7, 2022
•[ hack, ddos, government ]
Google's Threat Analysis Group confirms that DDoS attacks are currently ongoing against numerous Ukraine sites, including the Ministry of Foreign Affairs, Ministry of Internal Affairs
Town of East Windsor
March 7, 2022
•[ hack, phishing, government ]
The town of East Windsor officials confirm that the township experienced a cyber breach that wreaked havoc on its systems and is sending residents fraudulent emails.
Russian federal agencies including the Energy Ministry, the Federal State Statistics Service, the Federal Penitentiary Service, the Federal Bailiff Service, the Federal Antimonopoly Service, the Culture Ministry
March 7, 2022
•[ hack, government ]
Russia says some of its federal agencies' websites were compromised in a supply chain attack after unknown attackers hacked the stats widget used to track the number of visitors by multiple government agencies
