Terra Protocol
August 22, 2023
•[ social, phishing, technology ]
Terra announces a temporary shuttering of its website to protect its users from interacting with an ongoing phishing scam on the platform.
Greater Dallas Healthcare Enterprises
August 11, 2023
•[ hack, phishing, healthcare ]
Greater Dallas Healthcare Enterprises (GDHE) files a notice of data breach after discovering that an unauthorized third party gained access to an employee's email account.
Capital Neurological Surgeons
August 4, 2023
•[ hack, leak, phishing ]
Capital Neurological Surgeons discloses that an unauthorized individual gained access to an employee email account and potentially obtained patient information.
Wojeski & Company
July 28, 2023
•[ ransomware, phishing, data leak ]
NY AG says Wojeski suffered a phishing-led ransomware incident that locked access to files, followed by a second breach when a vendors employee improperly accessed and exfiltrated client data. Notifications lagged by over a year. Settlement requires encryption, inventorying locations of personal data, stronger access controls, vulnerability management, and a formal IR plan; $60,000 penalty and credit monitoring for affected New Yorkers.
Johnstown Regional Sewage
July 26, 2023
•[ social, phishing ]
Federal and local law enforcement agencies investigate into an alleged phishing scam perpetrated against Johnstown Regional Sewage.
Guarantee Trust Life Insurance Company
July 12, 2023
•[ hack, phishing, finance ]
Guarantee Trust Life Insurance Company files a notice of data breach after determining that an unauthorized party accessed an employee's email account that contained confidential consumer information.
Sigrist, Cheek, Potter & Huyser
July 11, 2023
•[ hack, phishing, finance ]
Sigrist, Cheek, Potter & Huyser (SCP&H) files a notice of data breach after discovering that an unauthorized party gained access to the companys email system and cloud-based storage site.
North Mississippi Health Services
July 3, 2023
•[ social, phishing, healthcare ]
North Mississippi Health Services reveals that they discovered unauthorized access through an employee's email account after a phishing email was unintentionally opened.
ARx Patient Solutions
June 30, 2023
•[ hack, phishing, healthcare ]
ARx Patient Solutions files a notice of data breach after discovering that an employee's M365 email account was accessed by an unauthorized party.
Bi-Bett Corporation
June 13, 2023
•[ hack, phishing, healthcare ]
Bi-Bett Corporation files a notice of data breach after discovering that an unauthorized party was able to access an employee's email account containing sensitive patient information.
Discovery at Home
June 1, 2023
•[ social, phishing, retail ]
Discovery at Home issues a website notice about a phishing incident they discovered on June 1.
Undisclosed energy company in the U.S.
May 31, 2023
•[ social, phishing, energy ]
Researchers from Cofense discover a phishing campaign was observed targeting a notable energy company in the US, employing QR codes to slip malicious emails into inboxes and bypass security.
South Jersey Behavioral Health Resources
May 26, 2023
•[ social, phishing, healthcare ]
South Jersey Behavioral Health Resources discloses to have suffered a phishing attack.
Life Generations Healthcare
May 24, 2023
•[ hack, phishing, healthcare ]
Life Generations Healthcare (LGH) files a notice of data breach after discovering that an unauthorized party temporarily gained access to certain employee email accounts.
UC Davis Health
May 24, 2023
•[ hack, phishing, healthcare ]
UC Davis Health confirms that the email account of an employee had been accessed by an unauthorized individual.
Henry Ford Health
May 16, 2023
•[ social, phishing, healthcare ]
Henry Ford Health confirms that an email phishing scheme led to a data breach affecting 168,000 patients.
Discord
May 12, 2023
•[ social, phishing, technology ]
Discord notifies users of a data breach that occurred after the account of a third-party support agent was compromised.
Eurasia Group
May 3, 2023
•[ espionage, phishing, government ]
Eurasia Group discovers suspicious activity within its email system by a sophisticated threat actor in two different circumstances.
Physicians Insurance
May 2, 2023
•[ social, phishing, finance ]
Physicians Insurance A Mutual Company, its affiliate MedChoice Risk Retention Group, and its subsidiary Experix (collectively "Physicians Insurance") file a notice of data breach after discovering that an unauthorized party gained access to an employee's email account.
North Carolina Housing Finance Agency
April 30, 2023
•[ financial, phishing, government ]
The North Carolina Housing Finance Agency (NCHFA) loses nearly $3 million in a business email compromise (BEC) scam.
