Acne.org
November 25, 2014
•[ leak, healthcare ]
In November 2014, the acne website acne.org suffered a data breach that exposed over 430k forum members' accounts. The data was being actively traded on underground forums and included email addresses, birth dates and passwords.
giftstore
October 27, 2014
•[ hack, leak, financial ]
A Saudi hacker dubbed @security_511 claims to have hacked a private online Israeli gift store (giftstore.co.il) and leaks credit card details of several customers.
Warsaw Stock Exchange
October 24, 2014
•[ hack, leak, finance ]
The Warsaw Stock Exchange is allegedly hacked. A supporter of ISIS claims responsibility for the attack, leading to the leak of 30 Mb of Data.
National Domestic Workers Alliance
October 20, 2014
•[ hack, leak, financial ]
The National Domestic Workers Alliance (NDWA) announces that an unauthorized intrusion on its email system led to exposing personally identifiable information and financial details of some of its employees.
ILikeCheats
October 18, 2014
•[ leak, misconfiguration, technology ]
In October 2014, the game cheats website known as ILikeCheats suffered a data breach that exposed 189k accounts. The vBulletin based forum leaked usernames, IP and email addresses and weak MD5 hashes of passwords. The data was provided with support from dehashed.com.
UC Davis Health System
October 15, 2014
•[ hack, leak, healthcare ]
UC Davis Health System notifies 1,326 patients that a physician's work email account was accessed by an unknown source and an email within that account contained their personal or medical information.
Oregon Employment Department
October 13, 2014
•[ leak, misconfiguration, government ]
851,322 individuals who used Oregon Employment Department's WorkSource Oregon Management Information System (WOMIS) will soon be receiving notices that their information might have been compromised due to a recently discovered vulnerability.
Ningbo Free Trade Zone
October 13, 2014
•[ leak, government ]
The Anonymous follow up on their threat made under operation #OpHK, to release data from Chinese government websites in support of the pro-democracy protests in Hong Kong. The collective leaks hundreds of phone numbers and email addresses.
Snapsaved
October 13, 2014
•[ hack, leak, technology ]
Snapsaved.com, a third-party application that allows Snapchat users to save images and videos sent over the service online, is hacked, as a consequence 13 gigabytes of stolen images are posted online.
Japan Airlines
September 30, 2014
•[ leak, malware, transportation ]
Japan Airlines, or JAL, says personal information of up to 750,000 customers of its miles program has been leaked due to a cyber attack, without confirming if banking details had also been affected.
K Box
September 19, 2014
•[ hack, leak ]
A Singapore-based karaoke chain, K Box, has members' personal information compromised earlier this week when the hacker group The Knowns' posted the data online. Up to 317,000 members' details could have been.
healer
September 17, 2014
•[ hack, leak ]
@smitt3nz hacks healers.co.uk and dumps over 7,000 username and clear text passwords.
Tout
September 11, 2014
•[ leak, technology ]
In approximately September 2014, the now defunct social networking service Tout suffered a data breach. The breach subsequently appeared years later and included 653k unique email addresses, names, IP addresses, the location of the user, their bio and passwords stored as bcrypt hashes. The data was provided to HIBP by a source who requested it to be attributed to "nmapthis@protonmail.com".
Yandy
September 9, 2014
•[ leak, retail ]
Yandy.com, an online retailer of women's lingerie and clothing, announces to have discovered a security breach, resulting in credit and debit card data of customers being exposed.
Score
September 4, 2014
•[ leak, misconfiguration, manufacturing ]
Score, a sport uniform manufacturer, discovers a potential unauthorized data breach occurred on September 4, 2014. 500 customers who shopped online may have been compromised.
McKayla Maroney
August 31, 2014
•[ leak ]
Yet another leak of celebrities pictures. A massive leak of nude and risque photos appearing to be of huge stars like is leaked online, first appearing on 4chan.
MangaGamer
August 29, 2014
•[ leak ]
Visual novel distributor MangaGamer notifies its users to have suffered a security breach. The full member database is posted on pastebin.
Children's Mercy Hospital
August 19, 2014
•[ leak, healthcare ]
Children's Mercy Hospital in Kansas City notifies 4,076 individuals that Onsite Health Diagnostics, a vendor used by wellness program provider StayWell Health Management, experienced a breach that affected their personal information.
Banorte
August 18, 2014
•[ leak, finance ]
In August 2022, millions of records from Mexican bank "Banorte" were publicly dumped on a popular hacking forum including 2.1M unique email addresses, physical addresses, names, phone numbers, RFC (tax) numbers, genders and bank balances. Banorte have stated that the data is "outdated", although have not yet indicated how far back it dates to. Anecdotal feedback from HIBP subscribers suggests the data may date back 8 years to 2014.
diet.com
August 10, 2014
•[ leak, misconfiguration, healthcare ]
In August 2014, the diet and nutrition website diet.com suffered a data breach resulting in the exposure of 1.4 million unique user records dating back as far as 2004. The data contained email and IP addresses, usernames, plain text passwords and dietary information about the site members including eating habits, BMI and birth date. The site was previously reported as compromised on the Vigilante.pw breached database directory.
