Chemonics
December 3, 2024
•[ hack, government ]
Chemonics, a large contractor for the U.S. government says a 2023 cyberattack exposed the critical personal information of more than 263,000 people.
Cabot Financial
November 28, 2024
•[ hack, finance ]
A cyber attack targets acquisition and credit servicing firm Cabot involving the theft of some 394,000 data files, including material related to its direct customers and its loan book.
American Heart of Poland
November 28, 2024
•[ hack, healthcare ]
American Heart of Poland receives a fine of 330,000, after suffering a hacking incident.
Rutherford County Schools
November 25, 2024
•[ hack, education ]
Rutherford County Schools confirm to be dealing with a network and systems disruption since November 25.
Wirral University Teaching Hospital
November 25, 2024
•[ hack, healthcare ]
Major UK healthcare provider Wirral University Teaching Hospital (WUTH), part of the NHS Foundation Trust, suffers a cyberattack that causes a systems outage leading to postponing appointments and scheduled procedures.
iLearningEngines
November 18, 2024
•[ financial, hack, technology ]
iLearningEngines, an artificial intelligence company, says that a threat actor breached its network and stole a $250,000 wire payment.
International Game Technology
November 17, 2024
•[ hack, technology ]
International Game Technology (IGT), one of the largest gambling companies in the U.S. says that a cyberattack caused massive disruptions to their operations, forcing them to take some systems offline.
Northwest Asthma & Allergy Center
November 12, 2024
•[ hack, phishing, healthcare ]
An unauthorized party accessed an employees email account on November 12, 2024, compromising sensitive patient data at Northwest Asthma & Allergy Center. The breach was discovered and contained by November 13. At least ~1,000 patients were notified by January 2, 2025, and the incident was reported to HHS OCR. Investigation did not find evidence of exfiltration beyond what was accessible via the compromised mailbox.
Tibber
November 10, 2024
•[ hack, energy ]
In November 2024, the German electricity provider Tibber suffered a data breach that exposed the personal information of 50k customers. The data included names, email addresses, geographic locations (city and postcode) and total spend on purchases. The data was provided to HIBP by a source who requested it be attributed to "Threat Actor 888".
Ahold Delhaize
November 8, 2024
•[ hack, retail ]
Ahold Delhaize, the Dutch parent company of Stop & Shop, Hannaford, Food Lion, and Giant Food releases a statement warning that it recently discovered a cyberattack within its U.S. network.
Government Websites and Private Companies in South Korea
November 8, 2024
•[ hack, ddos, government ]
Pro-Russian hacktivists target South Korea with DDoS attacks as North Korea joins the Ukraine war.
Call of Duty gamers
November 7, 2024
•[ hack, misconfiguration, technology ]
A threat actor dubbed Vizor reveals that they banned thousands of Call of Duty gamers by abusing anti-cheat flaw.
Microlise
November 6, 2024
•[ hack, government ]
A cyberattack on Microlise leaves British prison vans without tracking systems or panic alarms.
Alaska Division of Retirement and Benefits
November 4, 2024
•[ hack, financial, government ]
The Alaska Division of Retirement and Benefits is hacked and State residents who work in the public sector, have employer contributions to their retirement accounts impacted
South East Technological University
November 4, 2024
•[ hack, education ]
The South East Technological University (SETU) in Ireland announces experiencing a cybersecurity incident targeting its IT systems.
Washington State Administrative Office of the Courts (AOC)
November 3, 2024
•[ hack, government ]
Court systems across Washington are down after officials said "unauthorized activity" was detected on their networks.
CR&R Environmental Services (CR&R Incorporated)
October 30, 2024
•[ hack, financial ]
CR&R discovered unauthorized access on October 30, 2024, affecting ~9,895 individuals. Notifications were issued December 26, 2024. Data included sensitive PII such as SSNs, drivers license and financial account data.
Tver Administration's Network
October 29, 2024
•[ hack, malware, government ]
A group with the moniker of Ukrainian Cyber Alliance claims to have taken down the Tver administration's network and to have wiped out dozens of virtual machines, backup storage, websites, email, and hundreds of workstations.
San Joaquin County Superior Court
October 28, 2024
•[ hack, government ]
The San Joaquin County Superior Court says that nearly all of its digital services are knocked offline due to a cyberattack.
Sensitive government and police databases in Italy
October 25, 2024
•[ hack, espionage, government ]
Four people are arrested in Italy after a business intelligence company called Equalize is accused of hacking sensitive government and police databases to create dossiers for its clients.
