UnitedHealthcare
December 29, 2022
•[ hack, misconfiguration, healthcare ]
UnitedHealthcare notifies individuals across the country of a recent data breach after an unauthorized party was able to access a UHC broker portal.
Bay Bridge Administrators
December 29, 2022
•[ hack, misconfiguration, finance ]
Bay Bridge Administrators, LLC ("BBA") filed notice of a data breach after an unauthorized party was able to access sensitive consumer information stored on the company's computer network.
Liepjas enerija
December 29, 2022
•[ hack, ddos, manufacturing ]
NoName057(16) claims to have conducted a DDoS attack against a Latvian energy production and distribution plant website.
CGM
December 28, 2022
•[ hack, misconfiguration, technology ]
CGM files a notice of data breach after learning that an unauthorized party was able to access confidential personal information stored on the company's computer system.
Mozilla
December 28, 2022
•[ hack, ddos, technology ]
Mirai, a KillNet-affiliated collective, claims to have conducted a DDoS attack against the support webpage of a popular search engine.
Latvenergo
December 28, 2022
•[ hack, ddos, manufacturing ]
NoName057(16) claims to have conducted a DDoS attack against the website of Latvia's state-owned energy company.
Motto Mortgage
December 28, 2022
•[ hack, finance ]
Motto Mortgage files notice of a data breach after learning that an unauthorized party was able to access confidential consumer information stored on the company's computer system.
Zacks Investment Research (Zacks)
December 28, 2022
•[ hack, finance ]
Zacks Investment Research (Zacks) discloses that threat actors breached Zacks Investment Research and gained access to personal and sensitive information belonging to 820,000 customers.
Poltava Bank
December 28, 2022
•[ hack, ddos, finance ]
The Russian-affiliated People's CyberArmy claims to have conducted a DDoS attack against the website of a Ukrainian bank.
RAF-AVIA
December 27, 2022
•[ hack, ddos ]
NoName057(16) claims to have conducted a DDoS attack against the website of a Latvian airline.
Slack
December 27, 2022
•[ hack, misconfiguration, technology ]
Threat actors gained access to Slack's externally hosted GitHub repositories via a "limited" number of Slack employee tokens that were stolen.
Harrington Raceway and Casino
December 27, 2022
•[ hack ]
Harrington Raceway and Casino files a notice of data breach with the Maine Attorney General after learning that hackers were able to access confidential consumer information located on the company's servers for a period of two weeks.
ASBE
December 27, 2022
•[ hack, ddos ]
NoName057(16) claims to have conducted a DDoS attack against the website, and two subdomains, of a Latvian private freight carrier.
Cott Systems
December 26, 2022
•[ hack, technology ]
Cott Systems, a cloud-based solutions provider, informed its customers that an "organized cyberattack" had hit the company systems and resulted in "unusual activity" on its servers
Latvian Public Utilities Commission
December 26, 2022
•[ hack, ddos, government ]
NoName057(16) claims to have conducted a DDoS attack against the website of a Latvian regulatory body.
Polish Civil Aviation Authority
December 25, 2022
•[ hack, ddos, government ]
NoName057(16) claims to have conducted DDoS attacks against the websites of eight Polish public institutions.
Polish Public Procurement Office
December 24, 2022
•[ hack, ddos, government ]
NoName057(16) claims to have conducted DDoS attacks against the websites of seven Polish public institutions.
Twitter
December 23, 2022
•[ hack, misconfiguration, technology ]
A threat actor claims to be selling public and private data of 400 million Twitter users scraped in 2021 using a now-fixed API vulnerability.
Albertsons Companies
December 23, 2022
•[ hack, malware, retail ]
Albertsons Companies files a notice of data breach after learning that confidential information belonging to certain individuals was accessed by an unauthorized party following a malware attack.
BAE Systems
December 23, 2022
•[ hack, ddos, manufacturing ]
NoName057(16) claims to have conducted a DDoS attack against the website of a British munition manufacturer.
