UofL Health
June 21, 2023
•[ leak, healthcare ]
UofL Health confirms to have been affected by the data breach on popular file transfer tool MOVEit
Omaha Health Insurance Company
June 21, 2023
•[ leak, misconfiguration, healthcare ]
Omaha Health Insurance Company files a notice of data breach after discovering that an incident at a third-party vendor compromised consumers enrolled in the Medicare Part D Prescription Drug Plan.
Dymocks
June 20, 2023
•[ leak, retail ]
In September 2023, the Australian book retailer Dymocks announced a data breach. The data dated back to June 2023 and contained 1.2M records with 836k unique email addresses. The breach also exposed names, dates of birth, genders, phone numbers and physical addresses.
Lamont Hanley & Associates
June 20, 2023
•[ leak, misconfiguration, healthcare ]
Almost 2,800 patients at Catholic Medical Center may have had their files containing personal and health information exposed in a third-party "data security incident" occurred to Lamont Hanley & Associates.
BreachForums
June 19, 2023
•[ leak, technology ]
The reincarnated BreachForums site just has its user database stolen and published.
BreachForums Clone
June 17, 2023
•[ leak, misconfiguration, technology ]
In June 2023, a clone of the previously shuttered popular hacking forum "BreachForums" suffered a data breach that exposed over 4k records. The breach was due to an exposed backup of the MyBB database which included email and IP addresses, usernames and Argon2 password hashes.
MyShopCasa
June 16, 2023
•[ leak, retail ]
MyShopCasa, an Italian e-commerce site has its database leaked.
Nuance
June 16, 2023
•[ leak, sqlinjection, technology ]
Software firm Nuance joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
East Western Bank
June 16, 2023
•[ leak, malware, finance ]
East Western Bank joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
Datasite
June 15, 2023
•[ ransomware, leak, malware ]
Financial software provider Datasite is listed in the Clop ransomware gang leak site after the attackers exploited the MOVEit CVE-2023-34362 vulnerability.
Corebridge Financial
June 15, 2023
•[ leak, sqlinjection, finance ]
Corebridge Financial files a notice regarding a data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
subitodisponibile
June 13, 2023
•[ leak, retail ]
subitodisponibile.com, an Italian e-commerce portal, has 300,000 users leaked on the Exposed forum.
Paris High School
June 13, 2023
•[ ransomware, leak, malware ]
The Rhysida ransomware gang adds the Paris High School in Illinois to their leak site as an "auction" item.
Zacks Investment Research
June 12, 2023
•[ leak, finance ]
Zacks Investment Research (Zacks) reportedly suffers an older, previously undisclosed data breach impacting 8.8 million customers, with the database now shared on a hacking forum.
HopSkipDrive
June 12, 2023
•[ leak, technology ]
Student rideshare startup HopSkipDrive confirms a data breach involving the personal data of more than 155,000 drivers.
Drake University
June 10, 2023
•[ leak, sqlinjection, education ]
The Drake University confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
Realm IDX
June 5, 2023
•[ leak, sqlinjection, healthcare ]
Realm IDX, a diagnostics company, confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
Sky Italia
June 3, 2023
•[ leak, technology ]
Sky Italia informs some customers of "illicit cyber activities" that could have affected their data.
Government of Nova Scotia
June 3, 2023
•[ leak, sqlinjection, government ]
The government of Nova Scotia confirms a data theft as a result of the exploitation of the CVE-2023-34362 vulnerability affecting popular file transfer tool MOVEit.
Pathology Resource Network
June 1, 2023
•[ leak, sqlinjection, healthcare ]
Pathology Resource Network (PRN) adds a website notice on its homepage after discovering that Cadence Bank, which provides treasury management services to PRN, experienced a MOVEit-related data breach.
