Unknown organization in the healthcare sector
August 21, 2023
•[ leak, healthcare ]
A database with 14GB of files with facial photos and 5.1 million records with El Salvadorans personal information is listed for sale on a popular hacking forum.
RobertoPolizzo
August 19, 2023
•[ leak, healthcare ]
A threat actor calling themselves 'TheSnake' claims to have stolen 1.3 TB of files from RobertoPolizzo.com, a Brazilian plastic surgery.
Illinois Department of Public Health
August 18, 2023
•[ leak, government ]
The Illinois Department of Public Health files a notice of data breach after discovering that information belonging to certain residents was compromised.
OutletAccessori
August 18, 2023
•[ leak, retail ]
The customer data of OutletAccessori.it, an Italian e-commerce site, is put up for sale on three different forums.
Blue Cross Blue Shield of Arizona
August 17, 2023
•[ leak, finance ]
Blue Cross Blue Shield of Arizona files a notice after discovering that TMG Health, one of the vendors used by AZ Blue, experienced a data breach affecting AZ Blue customer data
Harris Center for Mental Health
August 17, 2023
•[ leak, sqlinjection, healthcare ]
The Harris Center for Mental Health and IDD files a notice of data breach after discovering that one of the organization's vendors experienced a data breach related to a vulnerability in the MOVEit file transfer application.
HMG Healthcare
August 15, 2023
•[ leak, healthcare ]
Healthcare services provider HMG Healthcare discloses a data breach impacting the personal health information of employees and residents at 40 affiliated nursing facilities.
Banco Popular de Puerto Rico
August 15, 2023
•[ leak, finance ]
Banco Popular de Puerto Rico, Puerto Rico's largest bank, joins the victim list of the MOVEit attacks after the personal data of its 82,217 clients were exposed via third-party vendor PricewaterhouseCoopers (PwC).
University of Massachusetts Chan Medical School (UMass Chan)
August 15, 2023
•[ leak, misconfiguration, education ]
University of Massachusetts Chan Medical School (UMass Chan) posts a website notice describing a data breach impacting 134,000 users and resulting from the organization's use of MOVEit.
Discord
August 14, 2023
•[ leak, technology ]
The Discord.io custom invite service temporarily shuts down after suffering a data breach exposing the information of 760,000 members.
Ministry of Ayush in Jharkhand
August 14, 2023
•[ leak, government, healthcare ]
A threat actor dubbed Tanaka leaks a database with 320,000 patient records, belonging to the Ministry of Ayush in Jharkhand, India.
Fidelity National Information Services (FIS Global)
August 11, 2023
•[ leak, sqlinjection, finance ]
Fidelity National Information Services (FIS Global) files a notice of data breach after discovering that a vulnerability in the MOVEit file transfer program used by FIS Global compromised consumer information
India Ministry of Food Processing Industries
August 11, 2023
•[ leak, government ]
A threat actor dubbed Fredens of Security takes credit for exposing 4.5GB, purportedly containing 3 million records linked to India's Ministry of Food Processing.
Golden Corral
August 11, 2023
•[ leak, retail ]
The Golden Corral American restaurant chain discloses a data breach after attackers behind an August cyberattack stole the personal information of over 180,000 people.
Shemaroo Entertainment
August 11, 2023
•[ leak, hack ]
A user on a hacker forum is allegedly selling data attributed to Shemaroo Entertainment. The attacker claims that this compromised dataset contains 16.4 million user entries, exposing sensitive details such as email addresses, passwords, phone numbers, and additional personal information.
Tri-City Healthcare District
August 11, 2023
•[ leak, healthcare ]
Tri-City Healthcare District notifies that 108,149 people were impacted by a year-old data breach.
Virginia Department of Medical Assistance Services
August 9, 2023
•[ leak, government ]
The Virginia Department of Medical Assistance Services files a notice of data breach after discovering that confidential information in its possession was subject to unauthorized access.
PlayCyberGames
August 9, 2023
•[ leak, misconfiguration, technology ]
In August 2023, PlayCyberGames which "allows users to play any games with LAN function or games using IP address" suffered a data breach which exposed 3.7M customer records. The data included email addresses, usernames and MD5 password hashes with a constant value in the "salt" field. PlayCyberGames did not respond to multiple attempts to disclose the breach.
Oregon Sports Medicine
August 8, 2023
•[ ransomware, leak, malware ]
Oregon Sports Medicine is added to the 8Base ransomware leake site.
Unknown Organization
August 7, 2023
•[ hack, leak, education ]
The ThreatSec group allegedly claims to have hacked into MindX Technology School (mindx.edu.vn), database and is kept for sale
