Undisclosed third-party of Accenture
June 20, 2024
•[ leak, misconfiguration, technology ]
A threat actor named '888' claims to have extracted contact details of 33,000 current and former employees of Accenture in a breach that involves a third-party firm.
Z-lib
June 20, 2024
•[ leak, misconfiguration, technology ]
In June 2024, almost 10M user records from Z-lib were discovered exposed online. Now defunct, Z-lib was a malicious clone of Z-Library, a well-known shadow online platform for pirating books and academic papers. The exposed data included usernames, email addresses, countries of residence, Bitcoin and Monero cryptocurrency wallet addresses, purchases and bcrypt password hashes.
Kraken
June 19, 2024
•[ financial, misconfiguration, finance ]
The Kraken crypto exchange discloses that alleged security researchers exploited a zero-day website bug to steal $3 million in cryptocurrency and then refused to return the funds.
QuoteWizard
June 10, 2024
•[ financial, misconfiguration, finance ]
Financial services firm LendingTree confirms that QuoteWizard, one of its subsidiaries, was potentially affected by a cybersecurity incident following a wider attack on customers of data storage company Snowflake.
Pure Storage
June 10, 2024
•[ hack, misconfiguration, technology ]
Pure Storage, a leading provider of cloud storage systems and services, confirms that attackers breached its Snowflake workspace and gained access to what the company describes as telemetry information.
Loopring
June 9, 2024
•[ financial, misconfiguration, finance ]
Loopring announces a security breach involving its two-factor authentication service Guardian, affecting two wallets, with one of them was drained of about $5 million.
New York Times
June 8, 2024
•[ leak, misconfiguration, technology ]
The New York Times confirms that internal source code and data was leaked on the 4chan message board after being stolen from the company's GitHub repositories in January 2024.
Advance Auto Parts
June 5, 2024
•[ leak, misconfiguration, automotive ]
In June 2024, Advance Auto Parts confirmed they had suffered a data breach which was posted for sale to a popular hacking forum. Linked to unauthorised access to Snowflake cloud services, the breach exposed a large number of records related to both customers and employees. In total, 79M unique email addresses were included in the breach, alongside names, phone numbers, addresses and further data attributes related to company employees.
Germany's Christian Democratic Union
June 1, 2024
•[ hack, misconfiguration, government ]
Germany's Christian Democratic Union (CDU), the country's leading opposition party, is hit by a major cyberattack and has taken parts of its IT-infrastructure off the grid as a precautionary measure. According to sources, the attackers exploited the CVE-2024-24919 Check Point vulnerability.
Ticketek
May 31, 2024
•[ leak, misconfiguration, retail ]
In May 2024, the Australian event ticketing company Ticketek reported a data breach linked to a third party cloud-based platform. The following month, the data appeared for sale on a popular hacking forum and was later linked to a series of breaches of the Snowflake cloud storage service. The data contained almost 30M rows with 17.6M unique email addresses alongside names, genders, dates of birth and hashed passwords.
BBC
May 21, 2024
•[ leak, misconfiguration, technology ]
The BBC discloses a data security incident that occurred on May 21, involving unauthorized access to files hosted on a cloud-based service, compromising the personal information of BBC Pension Scheme members.
Ticketmaster
May 20, 2024
•[ leak, misconfiguration, technology ]
Live Nation confirms that Ticketmaster suffered a data breach after its data was stolen from a third-party cloud database provider, which is believed to be Snowflake. The data of 560 million users is potentially affected.
Banco Santander
May 14, 2024
•[ leak, misconfiguration, finance ]
Banco Santander announces it suffered a data breach impacting customers after an unauthorized actor accessed a database hosted by one of its third-party service providers. ShinyHunters claims Santander breach, selling data for 30M customers
The Post Millennial
May 2, 2024
•[ hack, misconfiguration, technology ]
In May 2024, the conservative news website The Post Millennial suffered a data breach. The breach resulted in the defacement of the website and links posted to 3 different corpuses of data including hundreds of writers and editors (IP, physical address and email exposed), tens of thousands of subscribers to the site (name, email, username, phone and plain text password exposed), and tens of millions of email addresses from thousands of mailing lists alleged to have been used by The Post Millennial (this has not been independently verified). The mailing lists appear to be sourced from various campaigns not necessarily run by The Post Millennial and contain a variety of different personal attributes including name, phone and physical address (depending on the campaign). The data was subsequently posted to a popular hacking forum and extensively torrented.
Tappware
April 23, 2024
•[ hack, misconfiguration, technology ]
In April 2024, a substantial volume of data was taken from the Bangladeshi IT services provider Tappware and published to a popular hacking forum. Comprising of 95k unique email addresses, the data also included extensive labour information on local citizens including names, physical addresses, job titles, dates of birth, genders and scans of government issued national identity (NID) cards.
MovieBoxPro
April 15, 2024
•[ leak, misconfiguration, technology ]
In April 2024, over 6M records from the streaming service MovieBoxPro were scraped from a vulnerable API. Of questionable legality, the service provided no contact information to disclose the incident, although reportedly the vulnerability was rectified after being mass enumerated.
Neiman Marcus
April 14, 2024
•[ hack, misconfiguration, retail ]
In May 2024, the American luxury retailer Neiman Marcus suffered a data breach which was later posted to a popular hacking forum. The data included 31M unique email addresses, names, phone numbers, dates of birth, physical addresses and partial credit card data (note: this is insufficient to make purchases). The breach was traced back to a series of attacks against the Snowflake cloud service which impacted 165 organisations worldwide.
Home Depot
April 6, 2024
•[ leak, misconfiguration, retail ]
Home Depot confirms that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks.
Mintlify
March 13, 2024
•[ leak, misconfiguration, technology ]
Documentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month.
Giant Tiger
March 4, 2024
•[ leak, misconfiguration, retail ]
In March 2024, Canadian discount store Giant Tiger suffered a data breach that exposed 2.8M customer records. Attributed to a vendor of the retailer, the breach included physical and email addresses, names and phone numbers.
