U.K. Politicians
October 3, 2022
•[ leak, misconfiguration, government ]
The current mobile phone number of the U.K. Prime Minister Liz Truss is being sold online, similarly the mobile phone numbers for Chancellor of the Exchequer, Kwasi Kwarteng, and 24 other members of the U.K. Cabinet are also accessible.
Dallam Hartley Counties Hospital District
September 28, 2022
•[ leak, misconfiguration, healthcare ]
Dallam Hartley Counties Hospital District reports a data breach after the organization learned that an unauthorized party was able to access confidential patient information contained on its computer
Auth0
September 26, 2022
•[ leak, misconfiguration, technology ]
Authentication service provider Auth0 discloses what it calls a "security event" involving some of its code repositories (from 2020 and earlier) obtained by unknown means from its environment.
Diodes Incorporated
September 23, 2022
•[ leak, misconfiguration, manufacturing ]
Diodes Incorporated confirms that the company experienced a data breach after consumer data entrusted to the company was accessible to an unauthorized party.
Hampton Public Library
September 21, 2022
•[ hack, misconfiguration, government ]
The Hampton Public Library is hacked, redirecting people to an adult retail store website.
Doctors' Center Hospital
September 11, 2022
•[ hack, misconfiguration, healthcare ]
Doctors' Center Hospital reports a data breach after the company learned that an unauthorized party was able to gain access to sensitive patient information.
New York-Presbyterian Hospital
September 8, 2022
•[ leak, misconfiguration, healthcare ]
New York-Presbyterian Hospital discloses a security incident after detecting a possible attempts to download information by an unauthorized user.
Avalanche blockchain
September 7, 2022
•[ financial, misconfiguration, finance ]
An attacker steals at least $370,000 worth of USDC stablecoins from a smart contract on the Avalanche blockchain in a flash loan attack, affecting multiple liquidity providers.
Salud Family Health
September 5, 2022
•[ leak, misconfiguration, healthcare ]
Salud Family Health reports a data breach after the company learned that an unauthorized party was able to access sensitive employee and patient information contained on its network.
Axel Royal
August 23, 2022
•[ hack, misconfiguration, manufacturing ]
Axel Royal reports a data breach after an unauthorized party gained access to the company''s computer network.
California Department of Corrections and Rehabilitation (CDCR)
August 22, 2022
•[ leak, misconfiguration, government ]
The California Department of Corrections and Rehabilitation discloses a potential exposure of medical information, for employees and visitors who were tested for the coronavirus, after discovering some suspicious activity in a file transfer system.
Brand New Tube
August 14, 2022
•[ leak, misconfiguration, technology ]
In August 2022, the streaming website Brand New Tube suffered a data breach that exposed the personal information of almost 350k subscribers. The impacted data included email and IP addresses, usernames, genders, passwords stored as unsalted SHA-1 hashes and private messages.
Presidency of Moldova
August 12, 2022
•[ hack, misconfiguration, government ]
The e-mail server of the Presidency of Moldova is compromised.
Hjedd
July 18, 2022
•[ leak, misconfiguration, technology ]
In July 2022, the Chinese adult website Hjedd was found to be leaking more than 13M customer records which subsequently appeared on a popular hacking forum. The exposed data included email and IP addresses, usernames and passwords stored as bcrypt hashes.
Orot Yosef power plant
July 15, 2022
•[ hack, misconfiguration, energy ]
The Altahrea Team hacking group has taken responsibility for a power plant fire in Israel today, saying it assumed control of the plant's remote management system ahead of the blaze.
Mangatoon
July 5, 2022
•[ hack, misconfiguration, technology ]
Comic reading platform Mangatoon suffers a data breach that exposed information belonging to 23 million user accounts after a hacker stole it from an unsecured Elasticsearch database.
Macmillan Publishers
June 25, 2022
•[ hack, misconfiguration, technology ]
On December 5, 2022, Macmillan reported a data breach with the Texas Attorney General after an unauthorized party was able to bypass its data security system and gain access to sensitive consumer information on the company's computer system.
Disk Union
June 24, 2022
•[ leak, misconfiguration, retail ]
In June 2022, the Japanese record chain store Disk Union suffered a data breach. The incident exposed 690k unique email addresses along with names, post codes, phone numbers and plain text passwords.
Benefit Plan Administrators, Inc. (BPA)
June 15, 2022
•[ hack, misconfiguration, government ]
Benefit Plan Administrators, Inc. (BPA) confirms that the company experienced a data breach after an unauthorized party gained access to the company's computer network and the sensitive consumer data contained
DiversiTech Corporation
June 14, 2022
•[ hack, misconfiguration, manufacturing ]
DiversiTech Corporation confirms that the company experienced a data breach apparently related to unauthorized access to a company email account.
