Undetermined
February 1, 2022
•[ espionage, phishing, energy ]
Spear phishing email was sent to an employee of a Ukrainian energy organization containing malicious files that would download and install a payload known as SaintBot (a downloader) and OutSteel (a document stealer). The same threat actor group targeted a Western government entity in Ukraine, as well as several Ukrainian government organizations back in March 2021.
Valley View Hospital
January 19, 2022
•[ social, phishing, healthcare ]
Valley View Hospital announces that the email accounts of four employees have been accessed by unauthorized individuals after the employees responded to phishing emails.
Ballad Health
January 13, 2022
•[ social, phishing, healthcare ]
Ballad Health discloses a phishing incident that potentially led to protected health information (PHI) exposure.
Boulder County
January 12, 2022
•[ financial, social, phishing ]
Boulder County is able to recover the almost $238,000 it mistakenly sent to a fraudulent account after a phishing scam in September.
Catholic Hospice
January 12, 2022
•[ social, phishing, healthcare ]
Catholic Hospice suffers phishing attack resulting in unauthroized access to employee email account containing patient information.
Scott County
November 30, 2021
•[ social, phishing, government ]
Scott County discloses a phishing attack.
IKEA
November 26, 2021
•[ social, phishing, retail ]
IKEA warns employees of an ongoing reply-chain phishing cyberattack targeting internal mailboxes.
Healthplex Inc.
November 24, 2021
•[ social, phishing, healthcare ]
Healthplex Inc. announces that the email account of an employee was compromised in a phishing attack on November 24, 2021.
Cooper University Health Care
November 24, 2021
•[ hack, phishing, healthcare ]
Cooper University Health Care announces that the email account of an employee was accessed by an unauthorized individual on November 24, 2021
Volunteers of America Soutwest California
November 16, 2021
•[ social, phishing, healthcare ]
California social service organization suffers phishing attack compromising client information.
bZx
November 5, 2021
•[ financial, hack, social ]
North Korean threat actor steals $55 million worth of cryptocurrency assets from decentralized finance platform after compromising an employee private key through spear-phishing.
Phoenix Programs of Florida
November 1, 2021
•[ hack, phishing, healthcare ]
Phoenix Programs of Florida files an official notice of a data breach after several company email accounts were compromised.
Loyola University Medical Center
October 31, 2021
•[ hack, phishing, healthcare ]
Loyola University Medical Center notifies 16,934 patients that some protected health informatin may have been accessed by an unauthorized individual who gained access to an employee email accounty.
Riviera Utilities
October 17, 2021
•[ hack, phishing, energy ]
A data breach at Riviera Utilities exposes the personal details of customers after employee email accounts were accessed.
JSC Makeyev Design Bureau
September 22, 2021
•[ espionage, phishing, government ]
Researchers discover spearphishing campaign targeting a developer of fuel for Russia's ballistic missiles via a Microsoft vulnerability.
Boulder Neurosurgical and Spine Associates
September 21, 2021
•[ hack, phishing, healthcare ]
Colorado health system suffers unauthorized access to employee email compromising protected health information of over 21,000 patients.
Valley Mountain Regional Center
September 15, 2021
•[ social, phishing, healthcare ]
California medical center suffers phishing attack compromising protected health information of over 17,000 patients.
