St. Rose Hospital
December 20, 2022
•[ leak, healthcare ]
A listing appeared on a popular forum that offered documents allegedly from St. Rose Hospital in Hayward, California.
Level Travel
December 15, 2022
•[ leak, technology ]
NLB, a Ukrainian-affiliated threat actor, has leaked information of 1.5 million clients of a Russian online platform providing travel services.
SevenRooms
December 15, 2022
•[ leak, technology ]
Restaurant customer management platform SevenRooms confirms it suffered a data breach after a threat actor began selling stolen data on a hacking forum.
Moscow Electronic School Service
December 13, 2022
•[ leak, education ]
NLB, a Ukrainian-affiliated threat actor, has leaked an extensive database containing data of students in educational institutions in Moscow. The leak includes names, birthdays, phone numbers, email addresses, and login details.
Gemini
December 13, 2022
•[ leak, phishing, finance ]
In late 2022, data allegedly taken from the Gemini crypto exchange was posted to a public hacking forum. The data consisted of email addresses and partial phone numbers, which Gemini later attributed to an incident at a third-party vendor (the vendor was not named). The data was provided to HIBP by a source who requested it be attributed to "ZAN @ BF".
HawaiiUSA Federal Credit Union (HawaiiUSA)
December 12, 2022
•[ leak, phishing, finance ]
HawaiiUSA Federal Credit Union (HawaiiUSA) files a notice of data breach after a phishing incident leaks the personal information of more than 20,000 bank customers.
REC Silicon
December 11, 2022
•[ ransomware, leak, malware ]
RansomExx encrypted and leaked data stolen from REC Silicon onto their dark web site
Shelco
December 9, 2022
•[ leak, ransomware ]
Lorenz encrypted and leaked data stolen from Shelco onto their dark web site
Thor Specialties, Inc.
December 7, 2022
•[ ransomware, leak, malware ]
Lorenz encrypted and leaked data stolen from Thor Specialties, Inc. onto their dark web site
Snap Finance, LLC
December 5, 2022
•[ leak, finance ]
On December 5, 2022, Snap Finance, LLC and Snap RTO, LLC reported a data breach with the Texas Attorney General after the company learned that an unauthorized party was able to access confidential information that was stored on its computer network.
Teqtivity
December 2, 2022
•[ leak, technology ]
Uber staff info leaks after supplier Teqtivity gets pwned
CoinTracker
December 1, 2022
•[ leak, misconfiguration, finance ]
In December 2022, the Crypto & NFT taxes service CoinTracker reported a data breach that impacted over 1.5M of their customers. The company later attributed the breach to a compromise SendGrid in an attack that targeted multiple customers of the email provider. The breach exposed email addresses and partially redacted phone numbers, with CoinTracker advising that the later did not originate from their service.
Suffolk University
November 30, 2022
•[ leak, misconfiguration, education ]
Suffolk University reports a data breach after learning that an unauthorized party was able to access and remove certain files containing sensitive student information from the school's computer network.
Wings Financial
November 29, 2022
•[ leak, finance ]
Wings Financial admitted to the breach by filing a notice with the Maine Attorney General. The company also sent notification letters to the victims of the breach, alerting them to its occurrence to help ensure their future safety.
Beacon Insurance Company Ltd
November 27, 2022
•[ leak, finance ]
On November 27, The Beacon Insurance Company Ltd was named on a web site called "DataLeak." The site claims to have about 310GB of information on this insurer that has not yet been leaked.
Undetermined
November 26, 2022
•[ leak, finance ]
Data of Israeli Employees from 29 Logistics Firms Sold Online
UnitedAuto
November 25, 2022
•[ leak, automotive ]
LV adds UnitedAuto, a Mexican automotive company, to its leak site, claiming to have more than 2TB of stolen personal information.
Upper Peninsula Power Company (UPPCO)
November 23, 2022
•[ leak, misconfiguration, energy ]
Upper Peninsula Power Company (UPPCO) reports a data breach after the company learned that an unauthorized party was able to access sensitive consumer information by gaining access to its computer network.
Sonder
November 23, 2022
•[ leak ]
Hospitality company Sonder confirms a data breach that has potentially compromised guest records.
Three Cube IT Lab
November 22, 2022
•[ leak, technology ]
On November 22, 2022, CloudSEK discovered a post that advertised the sale of sensitive data sourced from Three Cube IT Lab India - a Chennai-based provider of business and consulting services.
