YouNow
February 15, 2019
•[ hack, technology ]
In February 2019, data from the live broadcasting service YouNow appeared for sale on a dark web marketplace. Whilst it's not clear what date the actual breach occurred on, the impacted data included 18M unique email addresses, IP addresses, names, usernames and links to social media profiles. As authentication is performed via social providers, no passwords were exposed in the breach. Many records didn't have associated email addresses thus the unique number is lower than the reported total number of accounts. The data was provided to HIBP by a source who requested it be attributed to "JimScott.Sec@protonmail.com".
British Army's "influence and outreach" Twitter account (@77th_Brigade).
February 13, 2019
•[ hack, social, government ]
An attacker takes control of the British Army's "influence and outreach" Twitter account (@77th_Brigade).
500px
February 13, 2019
•[ hack, technology ]
Users of the photography site 500px are forced to reset their passwords, following a breach where an attacker was able to take "partial user data" from July 5 last year.
Bank of Valletta
February 13, 2019
•[ hack, financial, finance ]
Bank of Valletta shuts down all of its operations on Wednesday after hackers broke into its systems and shifted funds overseas.
Dunkin' Donuts
February 12, 2019
•[ hack, brute-force, retail ]
Dunkin' Donuts announces that it was the victim of a credential stuffing attack during which hackers gained access to customer accounts.
OkCupid
February 12, 2019
•[ hack, brute-force, technology ]
Users of the OkCupid dating app are the victims of a credential stuffing attack.
VFEmail
February 11, 2019
•[ hack, technology ]
The U.S. servers of privacy-focused e-mail provider VFEmail is hacked on February 11 and all the data is destroyed, on both the main and the backup systems.
Pawnee County Memorial Hospital
February 9, 2019
•[ hack, malware, healthcare ]
Pawnee County Memorial Hospital in Nebraska notifies 7,038 patients of a malware incident affecting protected health information. The attack happened on November 29, 2018.
Liberal Party of Australia
February 8, 2019
•[ hack, government ]
Authorities in Australia have concluded that China was responsible for hacking the Liberal Party of Australia before the Australian election in a campaign that also included the hacking of the country's Parliament.
Australian Parliament
February 8, 2019
•[ hack, government ]
Authorities in Australia say they are investigating an attempt to hack into its parliament's computer network. There is no evidence that information has been accessed or stolen. The hack likely came from a foreign state.
EyeSouth Partners
February 7, 2019
•[ hack, healthcare ]
EyeSouth Partners notifies 24,000 patients after an employee email account is hacked.
Huddle House
February 1, 2019
•[ financial, hack, malware ]
Fast food restaurant chain Huddle House discloses that they were affected by a data breach in the point of sale system at some locations that allowed attackers to steal payment information.
Reproductive Medicine and Infertility Associates
February 1, 2019
•[ hack, malware, healthcare ]
Reproductive Medicine and Infertility Associates announces that it was the target of a malware attack in December that may have exposed the personal information of its clients.
Airbus
January 30, 2019
•[ hack, leak, manufacturing ]
Airbus says it detected a cyber attack on its information systems which resulted in a data breach but it said the incident did not affect its commercial operations.
Kwik Fit
January 30, 2019
•[ hack, malware, automotive ]
Kwik Fit confirms that its computer network has been infected with malware, disrupting its ability to book in vehicle repairs and handle other customer requests.
Tawakkol Karman
January 30, 2019
•[ espionage, hack, malware ]
Former U.S. government intelligence operatives working for the UAE used the spying tool Karma to hack the iPhones of activists, diplomats, and rival foreign leaders. One of the targets is Tawakkol Karman, a human rights activist known as the Iron Woman of Yemen.
BenefitMall
January 29, 2019
•[ hack, leak, technology ]
Delaware's Department of Insurance announces that 650 residents and 5 companies located within the state are impacted by a 2018 data breach of BenefitMall, an HR services administrator. An employee email was compromised between June 2018 and October 11.
Basecamp
January 29, 2019
•[ hack, brute-force, technology ]
Basecamp suffers an hour-long credential stuffing attack targeting its platform.
DailyMotion
January 25, 2019
•[ hack, brute-force, technology ]
Video sharing platform DailyMotion announces that it was the victim of a credential stuffing attack.
Electoral servers and personal computers of election staff in Ukraine
January 25, 2019
•[ hack, government ]
The head of Ukraine's cyber police says that Hackers likely controlled by Russia are stepping up efforts to disrupt Ukraine's presidential election in March with cyber attacks on electoral servers and personal computers of election staff.
