Choice Health Insurance
June 8, 2022
•[ leak, misconfiguration, healthcare ]
Choice Health Insurance notifies people of a data breach caused by human error of a vendor. they learned on May 14 that an unauthorized person was "offering to make available data allegedly taken from Choice Health.
Afni
June 7, 2022
•[ leak, misconfiguration ]
Afni files official notice of a data breach that impacted the sensitive information of certain individuals, after detecting anomalous activity on its network.
OLL.TV
June 5, 2022
•[ hack, misconfiguration, technology ]
According to the State Service of Special Communications and Information Protection of Ukraine (SSSCIP), the broadcast of the Football World Cup 2022 qualifier game between Wales and Ukraine is interrupted in Ukraine by a cyberattack that targeted OLL.TV, a Ukrainian online broadcasting platform. SSSCIP claims that malicious actors succeeded in gaining access to a Content delivery network (CDN) nod and rerouted the traffic. Ukrainian authorities temporarily stopped the broadcast to restart the traffic.
MemeChat
June 1, 2022
•[ leak, misconfiguration, technology ]
In mid-2022, "the ultimate hub of memes" MemeChat suffered a data breach that exposed 7.4M records. Alleged to be due to a misconfigured Elasticsearch instance, the data contained 4.3M unique email addresses alongside usernames.
Pegasus Airlines
May 30, 2022
•[ leak, misconfiguration, technology ]
Turkish flight operator Pegasus Airlines suffers a data breach after an AWS cloud storage bucket is reportedly left unprotected and there was unauthorized access to certain information held by carrier.
Verizon
May 26, 2022
•[ hack, misconfiguration, technology ]
A hacker obtains a database that includes the full name, email address, corporate ID numbers, and phone number of hundreds of Verizon employees.
QuestionPro
May 21, 2022
•[ hack, misconfiguration, technology ]
In May 2022, the survey website QuestionPro was the target of an extortion attempt relating to an alleged data breach. Over 100GB of data containing 22M unique email addresses (some of which appear to be generated by the platform), are alleged to have been extracted from the service along with IP addresses, browser user agents and results relating to surveys. QuestionPro would not confirm whether a breach had occurred (although they did confirm they were the target of an extortion attempt), so the data was initially flagged as "unverified". Subsequent verification by impacted HIBP subscribers later led to the removal of the unverified flag.
Avem Health Partners
May 14, 2022
•[ leak, misconfiguration, healthcare ]
On December 14, 2022, Avem Health Partners reported a data breach with several state attorney general offices after the company learned of a cybersecurity incident at 365 Data Centers, a vendor used by one of Avem's service providers.
The Springs Living
May 12, 2022
•[ hack, misconfiguration, healthcare ]
The Springs Living reports a data breach after an unauthorized party gained access to sensitive information on the company's computer network.
Russian TV
May 9, 2022
•[ hack, misconfiguration, technology ]
During the Russian President Putin's speech at today's "Victory Day" military parade, pro-Ukrainian hacking groups defaced the online Russian TV schedule page to display anti-war messages.
BlackBerry Fans
May 6, 2022
•[ hack, misconfiguration, technology ]
In May 2022, the Chinese BlackBerry enthusiasts website BlackBerry Fans suffered a data breach that exposed 174k member records. The impacted data included usernames, email and IP addresses and passwords stored as salted MD5 hashes.
Heroku
May 4, 2022
•[ hack, misconfiguration, technology ]
Salesforce-owned Heroku performs a forced password reset on a subset of user accounts. The company admits that the stolen GitHub integration OAuth tokens from last month further led to the compromise of an internal customer database.
MM.Finance
May 4, 2022
•[ financial, misconfiguration, finance ]
MM.Finance announces that attackers managed to steal $2 million worth of digital assets in a Domain Name System (DNS) attack.
McDonald's Costa Rica
April 15, 2022
•[ hack, misconfiguration, retail ]
A hacker accessed sensitive data belonging to McDonald's Costa Rica customers through an exposed database managed by a third-party service provider.
Taiwanese singer and actor Jay Chou
April 14, 2022
•[ hack, misconfiguration, finance ]
Attackers exploit a design flaw in the Rarible NFT marketplace to steal a non-fungible token from Taiwanese singer and actor Jay Chou and sell it for about $500,000.
Revest Finance
March 27, 2022
•[ financial, misconfiguration, finance ]
Decentralized finance (DeFi) protocol Revest Finance discloses that $2 million was stolen through a vulnerability on their platform.
PayHere
March 27, 2022
•[ hack, misconfiguration, finance ]
In late March 2022, the Sri Lankan payment gateway PayHere suffered a data breach that exposed more than 65GB of payment records including over 1.5M unique email addresses. The data also included IP and physical addresses, names, phone numbers, purchase histories and partially obfuscated credit card data (card type, first 6 and last 4 digits plus expiry date). A month later, PayHere published a blog on the incident titled Ensuring Integrity on PayHere Cybersecurity Incident.
Nestle
March 24, 2022
•[ leak, misconfiguration ]
The Anonymous collective leaks a 10GB trove of data from Nestl after the company unintentionally exposed some test data.
Undetermined
March 20, 2022
•[ hack, misconfiguration, finance ]
Anonymous claimed to have remotely accessed printers across Russia and forced them to print over 100,000 documents with messages against war and propaganda, and how to bypass censorship in the country. The hacked printers were forced to print PDFs with a message informing Russians that "their president, the government, and media all have been feeding them lies."
Regional Ministry of Health
March 15, 2022
•[ hack, misconfiguration, government ]
A hacker dubbed Spielerkid89 remotely accesses a computer belonging to a regional Ministry of Health in Russia, exploiting a VNC Server without authentication
