Okta
September 23, 2023
•[ leak, technology, healthcare ]
Okta warns nearly 5,000 current and former employees that their personal information was exposed after Rightway Healthcare, a third-party vendor was breached.
OpenSea
September 23, 2023
•[ leak, misconfiguration, finance ]
A third-party security incident may have reportedly exposed user information of NFT marketplace OpenSea, including API keys.
CSC ServiceWorks
September 23, 2023
•[ leak ]
CSC ServiceWorks, a leading provider of commercial laundry services and air vending solutions, discloses a data breach after the personal information of over 35,000 individuals was exposed in a 2023 cyberattack.
UBS Financial Services
September 22, 2023
•[ leak, malware, finance ]
Sovos Compliance files another notice of data breach on behalf of UBS Financial Services affected by a data breach at Sovos involving the MOVEit file transfer application.
Celink
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Celink affected by a data breach at Sovos involving the MOVEit file transfer application.
Mulkay Cardiology Consultants
September 22, 2023
•[ ransomware, leak, healthcare ]
The NoEscape ransomware gang lists Mulkay Cardiology Consultants to their leak site, claiming to have stolen 60GB of data on more than 30,000 patients.
Nansen
September 22, 2023
•[ leak, misconfiguration, technology ]
Ethereum blockchain analytics firm Nansen asks a subset of its users to reset passwords following a recent data breach at its authentication provider.
Pan-American Life Insurance Group
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Pan-American Life Insurance Group affected by a data breach at Sovos involving the MOVEit file transfer application.
Bangor Savings Bank
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Bangor Savings Bank affected by a data breach at Sovos involving the MOVEit file transfer application.
Patelco Credit Union
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Patelco Credit Union affected by a data breach at Sovos involving the MOVEit file transfer application.
Virginia Department of Medical Assistance Services
September 18, 2023
•[ leak, government ]
The Virginia Department of Medical Assistance Services (DMAS) files a notice of data breach.
CardX
September 15, 2023
•[ leak, finance ]
One of Thailand's major digital financial platforms, CardX, discloses a data leak that affected their customers.
UNC Health
September 15, 2023
•[ leak, sqlinjection, healthcare ]
The healthcare technology firm Nuance reveals that the Clop extortion gang has stolen personal data on UNC Health as part of the Progress MOVEit Transfer campaign.
SDA
September 12, 2023
•[ hack, leak, transportation ]
The ADHD hacktivist group claims responsibility for a cyber attack to SDA, the shipping company of Poste Italiane (the Italian Post Office) and leaks a sample with 100,000 records.
Sphero
September 9, 2023
•[ leak, education ]
In September 2023, over 1M rows of data from the educational robots company Sphero was posted to a popular hacking forum. The data contained 832k unique email addresses alongside names, usernames, dates of birth and geographic locations.
St. Paul Public Schools
September 8, 2023
•[ leak, education ]
St. Paul Public Schools notifies families and staff of a "data security incident" that may have exposed students' names and email addresses.
Coca-Cola FEMSA
September 8, 2023
•[ leak, manufacturing ]
A threat actor known as "TheSnake" leaks some data from Coca-Cola FEMSA with a claim that they had acquired a full database wit 8.16 GB of data.
Traderie
September 7, 2023
•[ leak, technology ]
In-game trading marketplaces Traderie and another marketplace, Nookazon, owned by the same parent company Akrew, alert users to a data breach impacting their personal information. A threat actor called "victim" claims to be selling the data of as many as 2.6 million users for $5,000 in bitcoin.
NOW Health Group
September 6, 2023
•[ leak, phishing, healthcare ]
NOW Health Group reveals that the protected health information of 4,661 individuals was compromised in a phishing attack.
Sabre
September 6, 2023
•[ ransomware, leak, malware ]
Travel booking giant Sabre says to be investigating claims of a cyberattack after a tranche of files purportedly stolen from the company appears on the The Dunghill Leak ransomware group leak site, who alleged it took about 1.3 terabytes of data.
