Capital Neurological Surgeons
August 4, 2023
•[ hack, leak, phishing ]
Capital Neurological Surgeons discloses that an unauthorized individual gained access to an employee email account and potentially obtained patient information.
Bank of Canton
August 3, 2023
•[ leak, sqlinjection, finance ]
The Bank of Canton files notice of data breach, after discovering that one of the bank's vendors experienced a MOVEit-related data breach.
Lumico Life Insurance Company
August 1, 2023
•[ leak, finance ]
Lumico Life Insurance Company files a notice of data breach after discovering that a MOVEit data breach at Pension Benefits Information.
Valley Mountain Regional Center
August 1, 2023
•[ leak, healthcare ]
Valley Mountain Regional Center discloses a breach.
Tecnova Group
July 31, 2023
•[ leak, technology ]
Tecnova Group suffers a cyber attack leading to the exfiltration of 7GB of data, of which 800MB are leaked.
Deloitte
July 26, 2023
•[ leak, vulnerability, technology ]
Deloitte confirms to be among the victims of a ctyber intrusion occurred exploiting the MOVEit vulnerability.
College of Collin
July 26, 2023
•[ ransomware, leak, education ]
The College of Collin joins the list of the victims that the Russian ransomware crew Clop claims to have compromised via the MOVEit vulnerability.
Transamerica Life Insurance Company
July 26, 2023
•[ leak, finance ]
Pension Benefit Information (PBI) files a notice of data breach on behalf of Transamerica Life Insurance Company after confirming that a vulnerability in the file-transfer program MOVEit resulted in confidential information of Transamerica Life customers being leaked.
Valley National Bank
July 25, 2023
•[ leak, finance ]
Valley National Bank files a notice of data breach after discovering that confidential data that had been provided to the bank was compromised.
Care N' Care Insurance Company
July 25, 2023
•[ leak, finance ]
Care N' Care Insurance Company files a notice of data breach after discovering that the confidential information of tens of thousands of patients was compromised in a cybersecurity incident.
Michigan State University
July 24, 2023
•[ leak, misconfiguration, education ]
Michigan State University (MSU) posts a notice on its website describing a third-party data breach that occurred at two vendors used by the University: the Teachers Insurance and Annuity Association (TIAA) and the National Student Clearinghouse ("NSC") both data breaches were related to the file transfer program MOVEit, resulting in the potential exposure of student and retiree data.
Egyptian Ministry of Health and Population
July 23, 2023
•[ leak, government ]
An 'established' threat actor claims to be in possession of two million data records stolen from the Egyptian Ministry of Health and Population.
Lake Sumter Community College
July 21, 2023
•[ leak, sqlinjection, healthcare ]
The Lake Sumter Community College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
St. Petersburg College
July 21, 2023
•[ leak, sqlinjection, education ]
The St. Petersburg College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
University at Buffalo
July 21, 2023
•[ leak, sqlinjection, education ]
The University at Buffalo confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
Olympic College
July 21, 2023
•[ leak, sqlinjection, education ]
The Olympic College confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability against the National Student Clearinghouse.
Pacific Premier Bank
July 20, 2023
•[ leak, sqlinjection, finance ]
Pacific Premier Bank files documents with the Securities and Exchange Commission describing a third-party data breach involving a vendor's use of MOVEit
Roblox
July 20, 2023
•[ leak, technology ]
The major gaming platform Roblox has suffered a major data breach, leading to the release of personal information including addresses from those who attended the Roblox Developer Conference between 2017-2020.
Willis Towers Watson
July 20, 2023
•[ leak, sqlinjection, finance ]
Pension Benefits Information (PBI) files a notice of data breach on behalf of Willis Towers Watson (WTW) after discovering that experienced a MOVEit-related breach at PBI affected confidential information that had been provided to WTW.
Este Lauder
July 18, 2023
•[ ransomware, leak, malware ]
Two ransomware actors, ALPHV/BlackCat and Clop list beauty company Este Lauder on their data leak sites as a victim of separate attacks.
