Bloom Health Centers
June 28, 2024
•[ hack, phishing, healthcare ]
Psych Associates of Maryland LLC d/b/a Bloom Health Centers ("Bloom Health") discloses a security breach after the compromise of an employee's email.
Domestic flight in Australia
June 28, 2024
•[ hack, phishing ]
The AFP charges an Australian man (42) with operating a fake Wi-Fi access point on a domestic flight to steal user credentials and data.
Shoe Zone
June 28, 2024
•[ hack, malware, retail ]
In June 2024, the UK footwear chain Shoe Zone disclosed a data breach that was subsequently posted for sale on a popular hacking forum. The data included over 100k orders containing names, addresses, partial credit card numbers (card type and last 4 digits), and 46k unique email addresses. The data was provided to HIBP by a source who requested it be attributed to "IntelBroker".
Telecommunication providers in Crimea
June 27, 2024
•[ hack, ddos, technology ]
Local authorities in Crimea warn of internet disruptions from distributed denial-of-service (DDoS) attacks targeting telecommunication providers.
BudTrader
June 27, 2024
•[ hack, misconfiguration ]
In July 2024, a data breach of the now defunct cannabis social platform BudTrader was posted for sale on a hacking forum. Dating back to the previous month, the breach of the website exposed 2.7M email addresses, usernames and WordPress password hashes.
Neiman Marcus
June 24, 2024
•[ hack, malware, retail ]
High-end department store Neiman Marcus discloses a data breach, shortly before the threat actor 'Sp1d3r' offered to sell information belonging to millions of the companys customers. The hack impacted 64,000 users and is likely part of the massive SnowFlake campaign.
CoinStats
June 23, 2024
•[ hack, finance ]
CoinStats reveals to have suffered a massive security breach that compromised 1,590 cryptocurrency wallets, draining over $2 million in virtual assets, with the attack suspected to have been carried out by North Korean threat actors.
Japan Aerospace Exploration Agency (JAXA)
June 21, 2024
•[ hack, government ]
The Japanese space agency JAXA has been hit by a series of cyberattacks since it reported a cyber incident during November 2023.
Apple
June 19, 2024
•[ hack, manufacturing ]
The threat actor IntelBroker claims to have hacked Apple, allegedly gaining access to internal source code of three popular tools of Apple.com.
CDK Global
June 19, 2024
•[ hack, retail ]
CDK Global suffers an additional breach as it was starting to restore systems shut down in an previous cyberattack.
Crown Equipment
June 19, 2024
•[ hack, manufacturing ]
Forklift manufacturer Crown Equipment confirms that it suffered a cyberattack earlier this month that disrupted manufacturing at its plants.
Learnosity
June 17, 2024
•[ hack, education ]
Learnosity, an e-learning platform with more than 40 million learners, discloses a cybersecurity incident.
TVP
June 16, 2024
•[ hack, ddos, technology ]
Russian threat actors could be behind the disruption to TVP, an online broadcast of the Euro 2024 soccer tournament, during the Polish national teams opening match against the Netherlands.
1,899 victims in Singapore
June 14, 2024
•[ financial, hack, malware ]
A Singapore police-led law enforcement operation dismantles a regional cybercrime ring that carried out malware-enabled scams to steal tens of millions of dollars from victims since 2023.
Globe Life
June 14, 2024
•[ hack, finance ]
American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data after breaching one of its web portals.
Amtrak
June 14, 2024
•[ hack, brute-force ]
Amtrak reveals that the Guest Rewards Accounts were hacked in credential stuffing attacks
Consulting Radiologists
June 14, 2024
•[ hack, healthcare ]
Consulting Radiologists notifies more than 500,000 individuals that their sensitive information was accessed and potentially acquired by threat actors earlier this year.
Richland School District
June 14, 2024
•[ hack, education ]
Richland School District is left without phones and Internet, after someone gained unauthorized access to the network.
Truist Bank
June 13, 2024
•[ hack, leak, finance ]
Truist Bank, a leading U.S. commercial bank, confirms this week that its systems were breached in an October 2023 cyberattack after a threat actor posted some of the company's data for sale on a hacking forum.
Pure Storage
June 10, 2024
•[ hack, misconfiguration, technology ]
Pure Storage, a leading provider of cloud storage systems and services, confirms that attackers breached its Snowflake workspace and gained access to what the company describes as telemetry information.
