Russia
March 6, 2024
•[ hack, government ]
As Russia prepares for its presidential election, its systems are reportedly being targeted by massive cyberattacks, according to local authorities.
South Africa Companies and Intellectual Property Commission (CIPC)
March 6, 2024
•[ hack, government ]
Sensitive data on businesses and individuals in South Africa is at risk after a cyberattack on the Companies and Intellectual Property Commission (CIPC) agency.
Canada's FINTRAC
March 5, 2024
•[ hack, government ]
Canadas financial intelligence agency FINTRAC (Financial Transactions and Reports Analysis Centre of Canada) announces pulling its corporate systems offline due to a cyber incident that struck over the weekend.
WoTLabs
March 3, 2024
•[ hack, technology ]
In March 2024, WoTLabs (World of Tanks Statistics and Resources) suffered a data breach and website defacement attributed to "chromebook breachers". The breach exposed 22k forum members' personal data including email and IP addresses, usernames, dates of birth and time zones.
Inflite – The Jet Centre Ltd (MoD travel subcontractor)
March 1, 2024
•[ hack, government ]
Unauthorized access to contractor email accounts handling MoD Afghan resettlement flights exposed personal data of ~3,700 people. No encryption, no leak observed, actor unknown. Disclosed Aug 16, 2025.
LDLC
February 28, 2024
•[ hack, retail ]
In March 2024, French retailer LDLC disclosed a data breach that impacted customers of their physical stores. The data was previously listed for sale on a popular hacking forum and contained 1.26M unique email addresses along with names, phone numbers and physical addresses. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
Cencora
February 27, 2024
•[ hack, manufacturing ]
Pharmaceutical giant Cencora says they suffered a cyberattack where threat actors stole data from corporate IT systems.
Hochschule Kempten
February 27, 2024
•[ hack, education ]
Hochschule Kempten, a university of applied sciences in the city of Kempten in Germany, announces being targeted by a criminal cyberattack that forced the institution to take down its IT infrastructure.
Cutout.Pro
February 26, 2024
•[ hack, misconfiguration, technology ]
In February 2024, the AI-powered visual design platform Cutout.Pro suffered a data breach that exposed 20M records. The data included email and IP addresses, names and salted MD5 password hashes which were subsequently broadly distributed on a popular hacking forum and Telegram channels.
Los Angeles Airport
February 24, 2024
•[ hack, government ]
IntelBroker claims to have breached the database of the Los Angeles Airport, exploiting a vulnerability in the CRM system, and resulting in the compromise of 2.5 million records of plane owners.
Royal Canadian Mounted Police (RCMP)
February 23, 2024
•[ hack, government ]
The Royal Canadian Mounted Police (RCMP), Canada's national police force, discloses that it recently faced a cyber attack targeting its networks.
Jeff “Jihoz” Zirlin
February 23, 2024
•[ financial, hack, finance ]
Jeff Jihoz Zirlin, one of the co-founders of the video game Axie Infinity and the related Ronin Network has nearly $10 million in cryptocurrency stolen from personal accounts.
University of Manchester
February 19, 2024
•[ hack, ddos, education ]
The University of Manchester is hit with a DDoS attack. The Anonymous Sudan group claims responsibility for the attack.
University of Cambridge
February 19, 2024
•[ hack, ddos, education ]
The University of Cambridge is hit with a DDoS attack. The Anonymous Sudan group claims responsibility for the attack.
FixedFloat
February 19, 2024
•[ hack, malware, finance ]
FixedFloat, a decentralized crypto exchange, is hacked via a crypto drainer, for at least $26 million worth of Bitcoin and Ethereum.
Los Angeles County Department of Health Services
February 19, 2024
•[ hack, phishing, government ]
The Los Angeles County Department of Health Services discloses a data breach after thousands of patients' personal and health information was exposed in a phishing attack impacting over two dozen employees.
MV Behshad
February 15, 2024
•[ espionage, hack, government ]
The U.S. conducts a cyberattack against MV Behshad, an Iranian military ship that had been collecting intelligence on cargo vessels in the Red Sea and the Gulf of Aden. Goal is to prohibit the sharing of information with Houthi rebels.
Lexington Medical Center
February 14, 2024
•[ hack, phishing, healthcare ]
Lexington Medical Center files a notice of data breach discovering that an unauthorized actor was able to access an employees email account.
OpenAI
February 14, 2024
•[ hack, ddos, technology ]
Anonymous Sudan claims responsibility for targeting ChatGPT and its parent company, OpenAI, with a series of DDoS attacks.
Davlyn Investments Property Management
February 14, 2024
•[ hack, misconfiguration ]
Davlyn Investments Property Management files a notice of data breach after discovering that an unauthorized party was able to access its IT network.
