Lamont Hanley & Associates
June 20, 2023
•[ leak, misconfiguration, healthcare ]
Almost 2,800 patients at Catholic Medical Center may have had their files containing personal and health information exposed in a third-party "data security incident" occurred to Lamont Hanley & Associates.
Dymocks
June 20, 2023
•[ leak, retail ]
In September 2023, the Australian book retailer Dymocks announced a data breach. The data dated back to June 2023 and contained 1.2M records with 836k unique email addresses. The breach also exposed names, dates of birth, genders, phone numbers and physical addresses.
BreachForums
June 19, 2023
•[ leak, technology ]
The reincarnated BreachForums site just has its user database stolen and published.
BreachForums Clone
June 17, 2023
•[ leak, misconfiguration, technology ]
In June 2023, a clone of the previously shuttered popular hacking forum "BreachForums" suffered a data breach that exposed over 4k records. The breach was due to an exposed backup of the MyBB database which included email and IP addresses, usernames and Argon2 password hashes.
Nuance
June 16, 2023
•[ leak, sqlinjection, technology ]
Software firm Nuance joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
MyShopCasa
June 16, 2023
•[ leak, retail ]
MyShopCasa, an Italian e-commerce site has its database leaked.
East Western Bank
June 16, 2023
•[ leak, malware, finance ]
East Western Bank joins the list of the victims of the data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
Corebridge Financial
June 15, 2023
•[ leak, sqlinjection, finance ]
Corebridge Financial files a notice regarding a data breach resulting from the CVE-2023-34362 vulnerability in MOVEit.
Datasite
June 15, 2023
•[ ransomware, leak, malware ]
Financial software provider Datasite is listed in the Clop ransomware gang leak site after the attackers exploited the MOVEit CVE-2023-34362 vulnerability.
subitodisponibile
June 13, 2023
•[ leak, retail ]
subitodisponibile.com, an Italian e-commerce portal, has 300,000 users leaked on the Exposed forum.
Paris High School
June 13, 2023
•[ ransomware, leak, malware ]
The Rhysida ransomware gang adds the Paris High School in Illinois to their leak site as an "auction" item.
HopSkipDrive
June 12, 2023
•[ leak, technology ]
Student rideshare startup HopSkipDrive confirms a data breach involving the personal data of more than 155,000 drivers.
Zacks Investment Research
June 12, 2023
•[ leak, finance ]
Zacks Investment Research (Zacks) reportedly suffers an older, previously undisclosed data breach impacting 8.8 million customers, with the database now shared on a hacking forum.
Drake University
June 10, 2023
•[ leak, sqlinjection, education ]
The Drake University confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
Realm IDX
June 5, 2023
•[ leak, sqlinjection, healthcare ]
Realm IDX, a diagnostics company, confirms to have suffered a data breach occurred exploiting the MOVEit CVE-2023-34362 vulnerability.
Government of Nova Scotia
June 3, 2023
•[ leak, sqlinjection, government ]
The government of Nova Scotia confirms a data theft as a result of the exploitation of the CVE-2023-34362 vulnerability affecting popular file transfer tool MOVEit.
Sky Italia
June 3, 2023
•[ leak, technology ]
Sky Italia informs some customers of "illicit cyber activities" that could have affected their data.
Pathology Resource Network
June 1, 2023
•[ leak, sqlinjection, healthcare ]
Pathology Resource Network (PRN) adds a website notice on its homepage after discovering that Cadence Bank, which provides treasury management services to PRN, experienced a MOVEit-related data breach.
AlohaCare
May 31, 2023
•[ leak, sqlinjection, healthcare ]
AlohaCare files a notice of data breach after confirming that a vulnerability in the file-transfer program MOVEit resulted in confidential patient information being accessible to an unauthorized party.
Indiana Family and Social Services Administration
May 31, 2023
•[ leak, sqlinjection, government ]
The Indiana Family and Social Services Administration (FSSA) posts a notice announcing that the protected health information of an estimated 212,193 Indiana Medicaid members was impacted by the MOVEit data breach affecting CareSource.
