Government of Brazil
September 20, 2022
•[ ransomware, leak, malware ]
The Everest ransom group adds the Government of Brazil to their leak site, claiming they got their hands on the access of gov.br network, a government services website, and stole 3TB of sensitive data.
Online Trade (Онлайн Трейд)
September 19, 2022
•[ leak, retail ]
In September 2022, the Russian e-commerce website Online Trade ( ) suffered a data breach that exposed 3.8M customer records. The data included email and IP addresses, names, phone numbers, dates of birth and MD5 password hashes.
Starbucks Singapore
September 16, 2022
•[ leak, retail ]
The Singapore division of Starbucks, the popular American coffeehouse chain, admits that it suffered a data breach incident impacting over 219,000 of its customers.
One Medical
September 9, 2022
•[ leak, healthcare ]
One Medical confirms that the company experienced a data breach after an unauthorized party gained access to sensitive consumer data that had been entrusted to the company.
New York-Presbyterian Hospital
September 8, 2022
•[ leak, misconfiguration, healthcare ]
New York-Presbyterian Hospital discloses a security incident after detecting a possible attempts to download information by an unauthorized user.
Teknozone
September 8, 2022
•[ leak, retail ]
Teknozone, an e-commerce portal of electronics, has 75.000 records leaked on the infamous portal Breach Forums.
Eurocell
September 8, 2022
•[ leak, manufacturing ]
Eurocell, a leading British PVC manufacturer, contacts current and former employees to inform them about a "substantial" data breach.
Codelco
September 8, 2022
•[ leak, energy ]
Attackers compromise the DB of COVID-19 tracking platform of the Codelco mining company and list it for sale on a popular forum. Almost 17,500 emails and more than 1,800 are from corporate users.
Thoro Bicycles
September 8, 2022
•[ leak, retail ]
Thoro Bicycles, an e-commerce portal of cycling accessories, has 31.000 records leaked on the infamous portal Breach Forums.
AAA Collections (Advanced Asset Alliance)
September 7, 2022
•[ leak, finance ]
AAA Collections reports a data breach after the company learned that an unauthorized party was able to access sensitive consumer data contained on its computer system.
General Elections Commission of Indonesia
September 7, 2022
•[ leak, government ]
A hacker under the moniker of Bjorka claims to have hacked the General Elections Commission of Indonesia and leaks the data of 105 million citizens.
Order Express, Inc.
September 7, 2022
•[ leak ]
On December 15, 2022, Order Express, Inc. reported a data breach with several state attorney general offices after the company learned of a data security incident resulting in the sensitive information of more than 63,000 consumers being leaked.
Salud Family Health
September 5, 2022
•[ leak, misconfiguration, healthcare ]
Salud Family Health reports a data breach after the company learned that an unauthorized party was able to access sensitive employee and patient information contained on its network.
Fundo Nacional de Desenvolvimento da Educatio
September 3, 2022
•[ ransomware, leak, malware ]
RansomExx encrypted and leaked data stolen from Fundo Nacional de Desenvolvimento da Educatio onto their dark web site
APK.TW
September 3, 2022
•[ leak, technology ]
In September 2022, the Taiwanese Android forum APK.TW suffered a data breach that was later redistributed as part of a larger corpus of data. The breach exposed 2.5M unique email addresses along with IP addresses, usernames and salted MD5 password hashes.
CBC Group (CBC)
September 2, 2022
•[ leak, retail ]
CBC Group (CBC) reports a data breach resulting in the names, Social Security numbers, driver's licenses or government identification card numbers, financial account numbers, and passport numbers of certain individuals being compromised.
Misattributed Flipkart Data
September 2, 2022
•[ leak, retail ]
In September 2022, over 500k customer records alleged to have been sourced from the Indian e-commerce service Flipkart appeared on a popular hacking forum. Flipkart subsequently reviewed the data and concluded there was minimal overlap with their subscriber base and was not sourced from their services. The data included email addresses, latitudes and longitudes, names and phone numbers.
Undisclosed organization
September 1, 2022
•[ leak, technology ]
An unknown attacker named Bjorka leaks the SIM data of 1.3 billion SIM numbers in Indonesia.
Alta Forest Products
August 31, 2022
•[ leak, manufacturing ]
Alta Forest Products experiences a cyberattack in which the protected health information of up to 2,100 members of the Alta Forest Products Health and Welfare Plan was exposed.
Meriplex Communications
August 30, 2022
•[ leak, technology ]
Meriplex Communications files notice of a data breach after discovering that confidential consumer data stored on the company's computer network was subject to unauthorized access.
