City National Bank
June 29, 2023
•[ ransomware, leak, finance ]
City National Bank in Miami, Florida is added to the Clop ransomware leak site of the victims of the MOVEit breach.
Delaware Health Net
June 29, 2023
•[ leak, healthcare ]
The Henrietta Johnson Medical Center postes notice that some patient data was involved in a breach at Delaware Health Network (DHN), a healthcare-controlled network provider and electronic health records management provider that provides services to Henrietta Johnson Medical Center (HJMC) and other entities.
Cognizant
June 28, 2023
•[ leak, sqlinjection, technology ]
Cognizant is listed by the Cl0p gang among the victims of a data breach occurred exploiting the MOVEit vulnerability.
CareSource
June 27, 2023
•[ leak, misconfiguration, healthcare ]
CareSource notifies of a data breach involving the company's use of the MOVEit file transfer application.
Datasite
June 27, 2023
•[ leak, sqlinjection, technology ]
Datasite files a notice of data breach following a third-party data breach occurred exploiting the MOVEit CVE-2023-34362 Vulnerability.
Jackson National Life Insurance
June 26, 2023
•[ leak, sqlinjection, finance ]
Jackson National Life Insurance discloses that 700K-800K of its customers were exposed in a data breach stemming from the exploitation of the MOVEit vulnerability.
Fassi Gru
June 26, 2023
•[ ransomware, leak, malware ]
The Rhysida ransomware gang adds Fassi Gru to their leak site and claims to be in possession of 490 Gb of data.
CreditTeam
June 26, 2023
•[ leak, finance ]
The criminal gang NoEscape claims responsibility for an attack to the Italian financial provider CreditTeam, and leaks 12.1 Gb of data.
Aurora National Life Assurance Company
June 25, 2023
•[ leak, misconfiguration, finance ]
Aurora National Life Assurance Company files a notice of data breach after discovering that an incident at a third-party vendor resulted in confidential consumer information being exposed to unauthorized access.
Undisclosed airport
June 23, 2023
•[ leak ]
The database of an undisclosed Italian airport with 7.8 million records is on sale in the dark web.
Indiana University Health (IU Health)
June 22, 2023
•[ leak, sqlinjection, healthcare ]
Indiana University Health (IU Health) posts a notice on its website announcing a data breach that occurred as a result of a third-party vendor's (TMG Health) use of the file transfer program MOVEit.
Vitality Group International
June 22, 2023
•[ leak, sqlinjection, technology ]
Vitality Group International files a notice of data breach after discovering that a vulnerability in a file transfer software used by the company allowed attackers to access certain confidential consumer information. The breach is believed to be related to the MOVEit CVE-2023-34362 Vulnerability.
Forevermoto
June 21, 2023
•[ leak, retail ]
Forevermoto, an Italian e-commerce site dedicated to motorbikes has its database leaked online.
UofL Health
June 21, 2023
•[ leak, healthcare ]
UofL Health confirms to have been affected by the data breach on popular file transfer tool MOVEit
Omaha Health Insurance Company
June 21, 2023
•[ leak, misconfiguration, healthcare ]
Omaha Health Insurance Company files a notice of data breach after discovering that an incident at a third-party vendor compromised consumers enrolled in the Medicare Part D Prescription Drug Plan.
Lamont Hanley & Associates
June 20, 2023
•[ leak, misconfiguration, healthcare ]
Almost 2,800 patients at Catholic Medical Center may have had their files containing personal and health information exposed in a third-party "data security incident" occurred to Lamont Hanley & Associates.
Dymocks
June 20, 2023
•[ leak, retail ]
In September 2023, the Australian book retailer Dymocks announced a data breach. The data dated back to June 2023 and contained 1.2M records with 836k unique email addresses. The breach also exposed names, dates of birth, genders, phone numbers and physical addresses.
BreachForums
June 19, 2023
•[ leak, technology ]
The reincarnated BreachForums site just has its user database stolen and published.
BreachForums Clone
June 17, 2023
•[ leak, misconfiguration, technology ]
In June 2023, a clone of the previously shuttered popular hacking forum "BreachForums" suffered a data breach that exposed over 4k records. The breach was due to an exposed backup of the MyBB database which included email and IP addresses, usernames and Argon2 password hashes.
Nuance
June 16, 2023
•[ leak, sqlinjection, technology ]
Software firm Nuance joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
