Assurance Health System
April 8, 2022
•[ hack, phishing, healthcare ]
Assurance Health System announces that the email accounts of two employees have been accessed by unauthorized individuals.
Individuals in the UK
March 31, 2022
•[ social, phishing, retail ]
Cyber-criminals are impersonating the confectioner Cadbury online to steal personal data.
Englewood Health
March 30, 2022
•[ social, phishing, healthcare ]
Englewood Health discloses a phishing attack that exposed 3,901 patients' information
US election officials
March 29, 2022
•[ social, phishing, government ]
The Federal Bureau of Investigation (FBI) warns US election officials of an ongoing and widespread phishing campaign in at least nine states, trying to steal their credentials since at least October 2021.
Weatherford ISD
March 29, 2022
•[ social, phishing, education ]
The Weatherford ISD reports a phishing incident reportedly affecting 1,254 Texans
Mailchimp
March 26, 2022
•[ hack, phishing, technology ]
Email marketing firm MailChimp disclosed that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks.
Spokane Regional Health District (SRHD)
March 24, 2022
•[ social, phishing, healthcare ]
Spokane Regional Health District (SRHD) says it suffered a phishing attack that potentially exposed the personal information of 1,260 individuals. The organization discovered a phishing email on February 24 and found that an unauthorized actor potentially previewed some protected health information.
Christie Clinic
March 24, 2022
•[ leak, phishing, healthcare ]
Christie Clinic issues a notice about a recent email security incident that potentially exposed certain patient information.
Morgan Stanley Wealth Management
March 18, 2022
•[ social, phishing, finance ]
Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised in voice phishing (vishing) social engineering attacks.
Charleston Area Medical Center (CAMC)
March 16, 2022
•[ social, phishing, healthcare ]
Charleston Area Medical Center (CAMC) discloses a phishing attack that impacted 54,000 individuals.
Tuloso Midway Independent School District
March 16, 2022
•[ hack, phishing, education ]
Tuloso Midway Independent School District discloses that one employee's email account was accessed without authorization.
RiverKids Pediatric Home Health
March 15, 2022
•[ hack, phishing, healthcare ]
RiverKids Pediatric Home Health notifies 3,494 patients that some of their protected health information has potentially been viewed or stolen as a result of an email security incident.
Whitefish School District
March 11, 2022
•[ social, phishing, education ]
Whitefish School District reports a data breach after an investigation discovered that an employee's computer had been accessible to an attacker after the employee had fallen for a social engineering scam.
European diplomatic entity
March 8, 2022
•[ espionage, phishing, government ]
Researchers from Mandiant detect an incident where APT29 successfully phished a European diplomatic entity and ultimately abused the Windows Credential Roaming feature.
Town of East Windsor
March 7, 2022
•[ hack, phishing, government ]
The town of East Windsor officials confirm that the township experienced a cyber breach that wreaked havoc on its systems and is sending residents fraudulent emails.
Undetermined
February 25, 2022
•[ social, phishing, finance ]
UNC1151 has targeted Employees of a Kazakhstani education institution. Mass phishing emails have recently been observed; after the account is compromised, the threat actiors, by the IMAP protocol, get access to all the messages. Subsequently, the attacks leverage the contact information stored in the victim's address book to propagate the phishing messages to other targets.
Undetermined
February 24, 2022
•[ espionage, phishing, finance ]
A phishing campaign was observed using a possibly compromised Ukrainian armed service member's email account, to target European government personnel involved in managing the logistics of refugees fleeing Ukraine. Researchers indicate there was a clear preference for targeting individuals with responsibilities related to transportation, financial and budget allocation, administration, and population movement within Europe.
Axis Communications
February 20, 2022
•[ social, phishing, manufacturing ]
Axis Communications is victim of a phishing attack, the company shuts down most of its system in response causing severe disruptions.
Undetermined
February 11, 2022
•[ phishing, malware, finance ]
CERT-UA reported mass distribution of phishing emails supposedly originating from Ukrainian state bodies and targeting Ukrainian entities. The lure is a Ukrainian language translation software, leading to the infection of GrimPlant and GraphSteel.
Wellstar Health System
February 7, 2022
•[ hack, phishing, healthcare ]
Wellstar Health System notifies individuals of a data security incident that occurred when an unauthorized party gained access to two Wellstar email accounts.
