justformen[.]com
September 20, 2016
•[ hack, malware, retail ]
The website for Just For Men, a company that sells various products for men is compromised to serve malware to its visitors.
modaco
September 20, 2016
•[ hack, technology ]
Modaco.com, a UK-based forum dedicated to the Android operating system is breached, with nearly 800,000 usernames and passwords stolen by hackers. The attack dates back to January 2016.
Unknown Organization
September 18, 2016
•[ hack, ddos, technology ]
Blizzard's Battle.net servers are knocked offline by yet another denial-of-service (DDoS) attack claimed by hacking group PoodleCorp.
American Muslim Leadership Council
September 17, 2016
•[ hack ]
A hacker going by the name MuslimLeets (aka Muj4hida) defaces the American Human Rights Council (AHRC) and 62 other websites, leaving a message calling for jihad.
World Anti-Doping Agency
September 14, 2016
•[ hack, espionage ]
The World Anti-Doping Agency (WADA) confirms that a suspected Russian hacking group illegally accessed its "administration and management system" - known as "Adams" and stole troves of sensitive data on athletes. Among those targeted are Serena and Venus Williams.
Leet
September 10, 2016
•[ hack, technology ]
In August 2016, the service for creating and running Pocket Minecraft edition servers known as Leet was reported as having suffered a data breach that impacted 6 million subscribers. The incident reported by Softpedia had allegedly taken place earlier in the year, although the data set sent to HIBP was dated as recently as early September but contained only 2 million subscribers. The data included usernames, email and IP addresses and SHA512 hashes. A further 3 million accounts were obtained and added to HIBP several days after the initial data was loaded bringing the total to over 5 million.
VoIPTalk
September 9, 2016
•[ hack, technology ]
Telephony provider VolPtalk may have been hit by hackers. The firm discreetly informs customers about a potential data breach and request to reset their passwords as a precautionary measure.
Almelo
September 9, 2016
•[ hack, government ]
Hackers steal 22 gigabytes of data from municipal servers in Almelo.
Unknown Organization
September 9, 2016
•[ hack, ddos, finance ]
Turkish hackers have launched DoS (Denial-of-Service) attacks against the web servers of the Austrian National Bank (OeNB).
KrebsOnSecurity
September 9, 2016
•[ hack, ddos, technology ]
Security researcher Brian Krebs' website KrebsOnSecurity comes under "heavy and sustainable" attack after two 18 year-old Israeli hackers were arrested over their connection with a DDoS-for-hire service called vDOS.
Unknown Organization
September 9, 2016
•[ hack, technology ]
Popular science website EurekAlert!, which handles embargoed reports on health, medicine, and technology is hacked. The announcement in the website states that usernames and passwords to the service have been compromised. The hacker has also leaked two embargoed reports.
vDoS
September 8, 2016
•[ hack, leak, ddos ]
vDos, a "booter" service that has earned in excess of $600,000 over the past two years helping customers coordinate more than 150,000 DDoS attacks is massively hacked, spilling secrets about tens of thousands of paying customers and their targets.
Vienna Airport
September 7, 2016
•[ hack ]
Austrian police investigates a failed cyberattack on Vienna's airport saying they are looking into the authenticity of a claim of responsibility from a Turkish nationalist group.
Unknown Organization
September 7, 2016
•[ hack, ddos, government ]
Servers belonging to the Project on Crowdsourced Imagery Analysis (PCIA), hosting data about nuclear tests, have been the subject of DDoS attacks just two days before North Korea's most recent nuclear tests.
Real Estate Mogul
September 6, 2016
•[ hack, misconfiguration, finance ]
In September 2016, the real estate investment site Real Estate Mogul had a Mongo DB instance compromised and 5GB of data downloaded by an unauthorised party. The data contained real estate listings including addresses and the names, phone numbers and 308k unique email addresses of the sellers. Real Estate Mogul was advised of the incident in September 2018 and stated that they "found no instance of user account credentials like usernames and passwords nor billing information within this file".
ClixSense
September 4, 2016
•[ hack, misconfiguration, technology ]
In September 2016, the paid-to-click site ClixSense suffered a data breach which exposed 2.4 million subscriber identities. The breached data was then posted online by the attackers who claimed it was a subset of a larger data breach totalling 6.6 million records. The leaked data was extensive and included names, physical, email and IP addresses, genders and birth dates, account balances and passwords stored as plain text.
Variety
September 3, 2016
•[ hack, misconfiguration, technology ]
Entertainment news site Variety is briefly taken over by the infamous hacker group OurMine. The hacking collective manages to break into Variety's content management system and defaces the site with a post of their own claiming responsibility for the attack.
Twitter
September 3, 2016
•[ hack, misconfiguration, technology ]
A group of hackers dubbed Spain Squad claims to have found a way to seize inactive and suspended Twitter accounts, and sells them on the social network.
Lightspeed
September 2, 2016
•[ hack, technology ]
Point of sales vendor Lightspeed is breached with password, customer data, and API keys possibly exposed, and notifies customers in an email saying that the information was contained in a compromised database.
Armenian National Security Service
September 2, 2016
•[ hack, leak, government ]
Azerbaijani hacktivists from Anti-Armenia Team leak the passport details of foreign visitors to Armenia and more after breaking into Armenian government servers.
