Trinity Health Corporation
March 9, 2023
•[ leak, phishing, healthcare ]
Trinity Health Corporation files a notice of data breach after learning that a phishing incident resulted in the confidential information of tens of thousands of patients being leaked.
Accreditation Commission for Education in Nursing
March 9, 2023
•[ leak, misconfiguration, education ]
The Accreditation Commission for Education in Nursing (ACEN) files a notice of data breach after learning that its managed file transfer server was compromised, resulting in an unauthorized party being able to access consumers' sensitive information, including their names and Social Security numbers.
Autoridad para la Reconstruccion con Cambios (ARCC)
March 9, 2023
•[ leak, government ]
The data from the Autoridad para la Autoridad para la Reconstruccion con Cambios (ARCC) are listed by a new group called Dark Power.
Populus Financial
March 9, 2023
•[ leak, finance ]
Populus Financial files a notice of data breach after experiencing a cybersecurity event that compromised confidential consumer information that had been entrusted to the company.
HDB Financial Services
March 8, 2023
•[ leak, finance ]
A hacker using the alias Kernelware leaks 7.5 GB of customer data with over 72 million entries belonging to HDB Financial Services, a subsidiary of India's largest private bank, HDFC Bank.
Beaver Medical Group (BMG)
March 8, 2023
•[ leak, phishing, healthcare ]
Beaver Medical Group (BMG) files a notice of data breach after discovering that a successful email phishing attack provided an unauthorized party with access to files containing confidential patient information.
Acronis
March 7, 2023
•[ leak, technology ]
The same attacker publishes a 12 Gb archive file allegedly containing certificate files, command logs, system configurations and information logs, filesystem archives, scripts, and backup configuration data stolen from Acronis.
Peerstar
March 7, 2023
•[ leak, healthcare ]
Peerstar, a provider of mental health support services, notifies 11,438 patients about the exposure and potential theft of their protected health information.
Winslow Memorial Hospital d.b.a Little Colorado Medical Center (LCMC)
March 7, 2023
•[ leak, healthcare ]
Winslow Memorial Hospital, doing business under the name Little Colorado Medical Center (LCMC), files a notice of data breach after learning that an unauthorized party carried out a cyberattack resulting in leaked patient data.
Bone & Joint
March 7, 2023
•[ leak, healthcare ]
Bone & Joint began notifies current and former patients and employees of a data breach after experiencing a reported "network outage," resulting in sensitive information in the company's possession being compromised.
Council of Grenada
March 7, 2023
•[ leak, government ]
Nearly 7 GB of data from the Council of Grenada are posted online by the GhostSec group.
Texas Medical Liability Trust (TMLT)
March 6, 2023
•[ leak, healthcare ]
Texas Medical Liability Trust (TMLT) files a notice of data breach after learning that confidential consumer information entrusted to the company was leaked in a recent cybersecurity incident.
Henrico Doctors Hospital
March 3, 2023
•[ leak, healthcare ]
Henrico Doctors' Hospital notifies 990 patients that some of their protected health information was compromised in a data breach.
GunAuction
March 2, 2023
•[ hack, leak, retail ]
Hackers breach GunAuction.com, a website that allows people to buy and sell guns, exposing the identities of 550,000 users.
WH Smith
March 2, 2023
•[ leak, retail ]
British retailer WH Smith suffers a data breach that exposes information belonging to current and former employees.
Chippewa County
March 1, 2023
•[ leak, government, healthcare ]
The Chippewa County Human Resources Division notifies that the laptop computer of an employee was compromised and 25-35MB of data was stolen from the device, including information protected under HIPAA.
Veris Residential
February 28, 2023
•[ leak ]
Veris Residential files a notice of data breach following a cybersecurity incident that leaked confidential consumer information.
Compass Behavioral Health
February 28, 2023
•[ leak, healthcare ]
Compass Behavioral Health discloses a data security incident that involved the protected health information (PHI) of 1,064 patients.
CityJerks
February 27, 2023
•[ hack, leak ]
In early 2023, the "mutual masturbation" website CityJerks suffered a data breach that exposed 177k unique email addresses. The breach also included data from the TruckerSucker "dating app for REAL TRUCKERS and REAL MEN" with the combined corpus of data also exposing usernames, IP addresses, dates of birth, sexual orientations, geo locations, private messages between members and passwords stored as salted MD5 hashes. The data was listed on a public hacking site and provided to HIBP by a source who requested it be attributed to "discord.gg/gN9C9em".
TheGradCafe
February 26, 2023
•[ leak, education ]
In February 2023, the grad school admissions search website TheGradCafe suffered a data breach that disclosed the personal records of 310k users. The data included email addresses, names and usernames, genders, geographic locations and passwords stored as bcrypt hashes. Some records also included physical address, phone number and date of birth. TheGradCafe did not respond to multiple attempts to disclose the breach.
