Funny Games
April 28, 2018
•[ leak, misconfiguration, technology ]
In April 2018, the online entertainment site Funny Games suffered a data breach that disclosed 764k records including usernames, email and IP addresses and salted MD5 password hashes. The incident was disclosed to Funny Games in July who acknowledged the breach and identified it had been caused by legacy code no longer in use. The record count in the breach constitute approximately half of the user base.
City of Hamilton
April 21, 2018
•[ leak, government ]
The emails of about 1,100 Hamilton residents have been compromised following a data breach of two waste collection apps, according to the city of Hamilton.
Irvington School District
April 16, 2018
•[ leak, email, education ]
Partial social security numbers of more than 1,200 employees at Irvington schools are distributed via email to an unknown number of recipients by an unidentified attacker.
Natalie Cassidy
April 8, 2018
•[ leak ]
EastEnders star Natalie Cassidy is the latest celebrity to have her intimate pictures leaked online in yet another evolution of the Fappening 2018 scandal.
Japan Ministry Employees
April 4, 2018
•[ leak, government ]
The Japanese government's cybersecurity center reveals that the email addresses and passwords of thousands of ministry employees have been leaked and are being sold on the Internet.
Guardian Pharmacy of Jacksonville
April 1, 2018
•[ leak, phishing, healthcare ]
Guardian Pharmacy of Jacksonville notifies 11,521 patients of email compromise of protected health information.
Meghan Markle
March 15, 2018
•[ leak, hack ]
The Fappening saga continues with new photo leaks published online. The most recent victim is none other than Meghan Markle, the soon-to-be Mrs. Prince Harry. Some believe ISIS could be involved in the hack, even if no official claim is made.
Nampa School District
March 15, 2018
•[ leak, education ]
The Nampa School District informed its employees of a potential security issue involving personally identifiable information of about 3,983 of its current and past employees.
Florida Virtual Learning School (FVLS)
March 9, 2018
•[ leak, education ]
Florida Virtual Learning School notifies 368,000 current and former students, after an individual with the moniker $2a$45 uploads information of 35,000 students on a forum. Leon County Schools is among the affected organizations.
Italian Ministry of Education
March 8, 2018
•[ leak, hack, education ]
The Italian branch of the Anonymous collective leaks from the Italian Ministry of Education, 26,000 emails of teachers belonging to all level of schools. They also leak 200 administrative staff addresses.
Wallace Community College Selma
February 24, 2018
•[ leak, phishing, education ]
Personal and financial information of current and former employees of Wallace Community College Selma is leaked through a phishing scam.
Punjab National Bank (PNB)
February 22, 2018
•[ leak, financial, finance ]
10,000 Credit Cards details from Punjab National Bank are leaked in the dark web.
HardwareZone (HWZ) Forum website
February 20, 2018
•[ hack, leak, technology ]
The HardwareZone (HWZ) Forum website is hacked and approximately 685,000 user profiles are affected. A senior moderator's account has been compromised by an unidentified hacker, and used to access the user profiles since September 2017.
2,844 Separate Data Breaches
February 19, 2018
•[ leak, misconfiguration, technology ]
In February 2018, a massive collection of almost 3,000 alleged data breaches was found online. Whilst some of the data had previously been seen in Have I Been Pwned, 2,844 of the files consisting of more than 80 million unique email addresses had not previously been seen. Each file contained both an email address and plain text password and were consequently loaded as a single "unverified" data breach.
Florida Virtual School
February 12, 2018
•[ leak, education ]
In March 2018, the Florida Virtual School (FLVS) posted a data breach notification to their website. The school had identified a data breach which had occurred sometime between 6 May 2016 and 12 Feb 2018 and an XML file containing 368k student records was subsequently found circulating. Each record contained student name, date of birth, password, grade, email and parent email resulting in a total of 543k unique email addresses. Due to the prevalence of email addresses belonging to individuals who are still legally children, the data breach has been flagged as "sensitive".
Nova Poshta
February 7, 2018
•[ leak ]
Personal data of 500,000 Nova Poshta clients, the largest private delivery company in Ukraine, is allegedly leaked to dark web.
Swisscom
February 7, 2018
•[ leak, technology ]
Swisscom, the biggest telecom company in Switzerland, suffers a data breach that resulted in the compromise of personal data of some 800,000 customers, i.e., nearly ten percent of the entire Swiss population. The breach dates back to Autumn 2017.
City of Keokuk
February 4, 2018
•[ leak, phishing, government ]
The City of Keokuk says a data breach resulted in the release of personal information of current and former city employees and elected leaders. An unauthorized party was able to obtain 2017 W-2 tax forms through the use of a "criminal phishing email."
Autocentrum.pl
February 4, 2018
•[ leak, misconfiguration, automotive ]
In February 2018, data belonging to the Polish motoring website autocentrum.pl was found online. The data contained 144k email addresses and plain text passwords.
Ron's Pharmacy Services
February 2, 2018
•[ leak, retail ]
Ron's Pharmacy Services notifies certain patients of the unauthorized access to certain limited pieces of patient information, including patient names, Ron's Pharmacy internal account numbers, and payment adjustment information.
