Deloitte
July 26, 2023
•[ leak, vulnerability, technology ]
Deloitte confirms to be among the victims of a ctyber intrusion occurred exploiting the MOVEit vulnerability.
College of Collin
July 26, 2023
•[ ransomware, leak, education ]
The College of Collin joins the list of the victims that the Russian ransomware crew Clop claims to have compromised via the MOVEit vulnerability.
Transamerica Life Insurance Company
July 26, 2023
•[ leak, finance ]
Pension Benefit Information (PBI) files a notice of data breach on behalf of Transamerica Life Insurance Company after confirming that a vulnerability in the file-transfer program MOVEit resulted in confidential information of Transamerica Life customers being leaked.
Valley National Bank
July 25, 2023
•[ leak, finance ]
Valley National Bank files a notice of data breach after discovering that confidential data that had been provided to the bank was compromised.
Care N' Care Insurance Company
July 25, 2023
•[ leak, finance ]
Care N' Care Insurance Company files a notice of data breach after discovering that the confidential information of tens of thousands of patients was compromised in a cybersecurity incident.
Michigan State University
July 24, 2023
•[ leak, misconfiguration, education ]
Michigan State University (MSU) posts a notice on its website describing a third-party data breach that occurred at two vendors used by the University: the Teachers Insurance and Annuity Association (TIAA) and the National Student Clearinghouse ("NSC") both data breaches were related to the file transfer program MOVEit, resulting in the potential exposure of student and retiree data.
Egyptian Ministry of Health and Population
July 23, 2023
•[ leak, government ]
An 'established' threat actor claims to be in possession of two million data records stolen from the Egyptian Ministry of Health and Population.
Lake Sumter Community College
July 21, 2023
•[ leak, sqlinjection, healthcare ]
The Lake Sumter Community College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
St. Petersburg College
July 21, 2023
•[ leak, sqlinjection, education ]
The St. Petersburg College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
University at Buffalo
July 21, 2023
•[ leak, sqlinjection, education ]
The University at Buffalo confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
Olympic College
July 21, 2023
•[ leak, sqlinjection, education ]
The Olympic College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
Pacific Premier Bank
July 20, 2023
•[ leak, sqlinjection, finance ]
Pacific Premier Bank files documents with the Securities and Exchange Commission describing a third-party data breach involving a vendor's use of MOVEit
Roblox
July 20, 2023
•[ leak, technology ]
The major gaming platform Roblox has suffered a major data breach, leading to the release of personal information including addresses from those who attended the Roblox Developer Conference between 2017-2020.
Willis Towers Watson
July 20, 2023
•[ leak, sqlinjection, finance ]
Pension Benefits Information (PBI) files a notice of data breach on behalf of Willis Towers Watson (WTW) after discovering that experienced a MOVEit-related breach at PBI affected confidential information that had been provided to WTW.
Este Lauder
July 18, 2023
•[ ransomware, leak, malware ]
Two ransomware actors, ALPHV/BlackCat and Clop list beauty company Este Lauder on their data leak sites as a victim of separate attacks.
Hankins & Sohn Plastic Surgery Associates
July 17, 2023
•[ hack, leak, healthcare ]
An unnamed group or individual claims responsibility for a a cyber attack to the plastic surgery practice Hankins & Sohn Plastic Surgery Associates and starts to leak data.
Highland Health Systems
July 15, 2023
•[ ransomware, leak, malware ]
The ransomware group ALPHV (AKA BlackCat) adds Highland Health Systems in Alabama to their leak site but remove the data few days after claiming the attack had violated their prohibition against attacking non-profits.
RCH
July 14, 2023
•[ leak, manufacturing ]
RCH, a provider of software and hardware solutions for points of sale, has its database dumped online.
American Multi-Cinema (AMC Theatres)
July 14, 2023
•[ leak, misconfiguration, retail ]
American Multi-Cinema (AMC Theatres) files a notice of data breach after a cyber incident resulted in an unauthorized party being able to access consumers' sensitive information. According to some source the incident stemmed from the exploitation of the MOVEit vulnerability.
Fairfax Oral & Maxillofacial Surgery (FOMS)
July 14, 2023
•[ leak, healthcare ]
Fairfax Oral & Maxillofacial Surgery (FOMS) files a notice of data breach after a cyber incident compromised patients' protected health information.
