Absolute Telecom
June 9, 2024
•[ hack, technology ]
GhostR claims to have stolen over 34 gigabytes of data belonging to Singapore-based telecom company Absolute Telecom PTE Ltd.
mSpy (2024)
June 9, 2024
•[ hack, leak, technology ]
In June 2024, a huge trove of data from spyware maker mSpy was obtained by hacktivists and published online. Comprising of 142GB of user data and support tickets along with 176GB of more than half a million attachments, the data contained 2.4M unique email addresses, IP addresses names and photos. The data was predominantly support tickets seeking help to install the spyware on target devices, whilst the attachments contained various data including screen grans of financial transactions, photos of credit cards and nude selfies.
Various election-related sites and two political parties in the Netherlands
June 6, 2024
•[ hack, ddos, government ]
Researchers from Cloudflare report to have mitigated at least three distributed denial of service (DDoS) attack waves on various election-related sites in the Netherlands, as well as several political parties; PVV (Party for Freedom) and FvD (Forum for Democracy). The hacktivist group known as 'HackNeT' took responsibility for the attacks.
Alabama Cardiology Group
June 6, 2024
•[ hack, healthcare ]
Alabama Cardiology Group notifies nearly 281,000 current and past patients, physicians and employees that threat actors stole their sensitive information.
Santa Barbara Systems
June 5, 2024
•[ hack, ddos, manufacturing ]
Santa Barbara Systems, a General Dynamics subsidiary in Spain that is refurbishing Leopard tanks for delivery to Ukraine, suffers a cyberattack on its website, by pro-Russia group NoName057(16).
Victorian Freight Specialists
June 4, 2024
•[ hack ]
The threat actor known as GhostR claims to have stolen data from Australian logistics company Victorian Freight Specialists.
Multiple organizations
June 3, 2024
•[ hack, malware, technology ]
A massive trove of 361 million email addresses from credentials stolen by password-stealing malware, in credential stuffing attacks, and from data breaches is added to the Have I Been Pwned data breach notification service.
Verny
June 3, 2024
•[ hack, retail ]
Verny, a popular Russian discount retail chain with over 1,000 stores nationwide is hit by a cyberattack over the weekend that disrupts its services for several days.
Official Microsoft India account on X (formerly Twitter)
June 3, 2024
•[ financial, hack, phishing ]
The official Microsoft India account on X (formerly Twitter), with over 211,000 followers, is hijacked by cryptocurrency scammers to impersonate Roaring Kitty, the handle used by notorious meme stock trader Keith Gill.
Gemini
June 3, 2024
•[ hack, finance ]
Cryptocurrency exchange Gemini warns it suffered a data breach incident caused by a cyberattack at its Automated Clearing House (ACH) service provider, whose name was not disclosed.
Germany's Christian Democratic Union
June 1, 2024
•[ hack, misconfiguration, government ]
Germany's Christian Democratic Union (CDU), the country's leading opposition party, is hit by a major cyberattack and has taken parts of its IT-infrastructure off the grid as a precautionary measure. According to sources, the attackers exploited the CVE-2024-24919 Check Point vulnerability.
Robinsons Malls
June 1, 2024
•[ hack, retail ]
In June 2024, the Philippines' largest shopping-mall operators Robinsons Malls suffered a data breach stemming from their mobile app. The incident exposed 195k unique email addresses along with names, phone numbers, dates of birth, genders and the user's city and province.
Hugging Face
May 31, 2024
•[ hack, technology ]
AI platform Hugging Face says that its Spaces platform was breached, allowing threat actors to access authentication secrets for its members.
Billericay School
May 31, 2024
•[ hack, malware, education ]
The Billericay School is hit with a malware attack.
Bring Me the Horizon Webpage
May 28, 2024
•[ hack ]
Someone hacks the Bring Me the Horizon hidden web site in an attempt to get ahead in the game.
Internet Archive
May 26, 2024
•[ hack, ddos, technology ]
The Internet Archive is hit with a prolonged DDoS attack.
pcTattletale
May 25, 2024
•[ hack, sqlinjection, technology ]
In May 2024, the spyware service pcTattletale suffered a data breach that defaced the website and posted tens of gigabytes of data to the homepage, allegedly due to pcTattletale not responding to a previous security vulnerability report. The breach exposed data including membership records, infected PC names, captured messages and extensive logs of IP addresses and device information.
Albany County
May 24, 2024
•[ hack, government ]
Officials in Albany County, New Yorks state capital region, say they are investigating a cyberattack ahead of the Memorial Day weekend.
CDEK
May 23, 2024
•[ hack ]
Head Mare, a little-known group, claims responsibility for an attack that has disrupted service for days at CDEK, one of Russias largest delivery companies.
Everbridge
May 21, 2024
•[ hack, technology ]
Everbridge, an American software company focused on crisis management and public warning solutions, notifies customers that unknown attackers had accessed files containing business and user data in a recent corporate systems breach.
