Light's Hope
June 25, 2018
•[ hack, technology ]
In June 2018, the World of Warcraft service Light's Hope suffered a data breach which they subsequently self-submitted to HIBP. Over 30K unique users were impacted and their exposed data included email addresses, dates of birth, private messages and passwords stored as bcrypt hashes.
Midwest City
June 24, 2018
•[ hack, misconfiguration, government ]
Midwest City, Oklahoma, reports that about 2,300 customers are potentially affected by a breach involving Superion's software Click2Gov.
PDQ
June 22, 2018
•[ hack, financial ]
PDQ, a fast-casual dining restaurant warns customers about a cyber attack on its computer systems in which hackers were able to access or acquire personal information from the chain's customers who paid with credit cards. The breach lasted nearly a year, from May 19, 2017 to April 20, 2018.
Indian businessman
June 22, 2018
•[ hack, financial, finance ]
The email of a city-based businessman is hacked and INR12.5 lakh (USD 18,230) stolen and transferred to two bank accounts in China.
Humana
June 21, 2018
•[ hack, brute-force, healthcare ]
Health insurer Humana notifies an unspecified number of health plan members after detecting and blocking a credential stuffing attack against Humana.com and Go365.com. The attacks took place on June 3 and June 4 from overseas IP addresses.
CarePartners
June 18, 2018
•[ hack, healthcare ]
CarePartners' computer system is breached and as a result patient and employee information including personal health and financial information, are inappropriately accessed.
Syscoin
June 13, 2018
•[ hack, malware, finance ]
Malicious actors replace the legitimate Windows installer for Syscoin's cryptocurrency with a version containing malware, which was available on the company's Github page for several days.
Mexican National Action Party (PAN)
June 12, 2018
•[ hack, government ]
The website of the Mexican National Action Party is hit by a cyber attack during the final television debate between presidential candidates ahead of the July 1 vote, after the site had published documents critical of the leading candidate.
slovensko
June 12, 2018
•[ hack, ddos, government ]
Several Slovakian websites including the Slovak Hydro-meteorological Institute and slovensko.sk are hit by a wave of DDoS attacks.
Coinrail
June 11, 2018
•[ hack, financial, finance ]
Coinrail, a South Korean cryptocurrency exchange, says that its systems have been hacked. It is believed that hackers stole about 40 billion won (US$37.2 million) worth of cryptocurrency from Coinrail, including 21 billion won worth of Pundi X and 14.9 billion won worth of Aston.
US Navy Contractor
June 8, 2018
•[ espionage, hack, government ]
Chinese government hackers have compromised the computers of a Navy contractor, stealing 600+ Gb of highly sensitive data related to undersea warfare, including secret plans to develop a supersonic anti-ship missile for use on U.S. submarines by 2020, accordding to American officials.
Estonian Citizens (via Estonian Cybercrime Bureau)
June 7, 2018
•[ hack, malware, government ]
In June 2018, the Cybercrime Bureau of the Estonian Central Criminal Police contacted HIBP and asked for assistance in making a data set of 655k email addresses searchable. The Estonian police suspected the email addresses and passwords they obtained were being used to access mailboxes, cryptocurrency exchanges, cloud service accounts and other similar online assets. They've requested that individuals who find themselves in the data set and also identify that cryptocurrency has been stolen contact them at cybercrime@politsei.ee.
Avery Moss
June 4, 2018
•[ hack, social, technology ]
Explicit videos and pictures of New York Giants defensive end Avery Moss are posted on his Twitter timeline after his account is hacked.
Holland Eye Surgery & Laser Center
June 2, 2018
•[ hack, healthcare ]
Holland Eye Surgery & Laser Center notifies 42,200 patients about a hack occurred in 2016.
Romwe
June 1, 2018
•[ hack, retail ]
In mid-2018, the Hong Kong-based retailer Romwe suffered a data breach which exposed almost 20 million customers. The data was subsequently sold online and includes names, phone numbers, email and IP addresses, customer geographic locations and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by dehashed.com.
Buffalo Wild Wings
June 1, 2018
•[ hack, phishing, retail ]
A hacker manages to take control of the official Twitter account of Buffalo Wild Wings (@BWWings) and posts a number of crude and racist tweets, including one that claims to give out the "secret recipe" for the company's wings.
The Rhode Island Department of Human Services
June 1, 2018
•[ hack, malware, government ]
Rhode Island officials say several state agencies are targeted by malware. The list of victims include: the Department of Children, Youth and Families, the Department of Human Services, and the Department of Behavioral Healthcare.
Taylor Cryptocurrency
May 28, 2018
•[ financial, hack, finance ]
The creators of the Taylor cryptocurrency trading app claim that an unidentified hacker has stolen around $1.35 million worth of Ether from the company's wallets.
University of Vermont
May 23, 2018
•[ hack, education ]
University of Vermont officials say they have no reason to believe the personal information of 37,000 current and former faculty, staff and students fell into the wrong hands following an intrusion of the school's computer systems.
