Syracuse University
September 24, 2020
•[ hack, leak, phishing ]
The names and Social Security numbers of about 9,800 Syracuse University students, alumni and applicants have been exposed after someone gained unauthorized access to an employee's email account.
Scouts Victoria
September 24, 2020
•[ social, phishing, education ]
Scouts Victoria warns about a phishing incident that occurred in late July and early August.
Three unknown individuals in Hungary
September 22, 2020
•[ social, financial, phishing ]
A mix of social engineering, SIM-swapping, and the use of AnyDesk remote desktop software allows a scammer to empty the bank accounts of at least three victims, stealing the equivalent of $350,000.
PXMart
September 17, 2020
•[ social, phishing, retail ]
Scammers copy the Facebook fan page of the Taiwanese supermaket chain PXMart, with the aim of "doing something nasty to those who fell for the scam".
Louisiana State University Health
September 15, 2020
•[ hack, phishing, healthcare ]
LSU Health New Orleans Health Care Services Division said it became aware of a cyber intrusion into an employee's electronic mailbox. Email messages or attachments contained limited information about patients who received care at Lallie Kemp Regional Medical Center in Independence; Leonard J. Chabert Medical Center in Houma; W. O. Moss Regional Medical Center in Lake Charles; and the former Earl K. Long Medical Center in Baton Rouge; Bogalusa Medical Center in Bogalusa; University Medical Center in Lafayette; and Interim LSU Hospital in New Orleans.
Brooklyn Defender Services
September 13, 2020
•[ hack, phishing, government ]
Brooklyn Defender Services has identified a data breach in which an unauthorized third-party gained access to some employees' email accounts.
The German Marshall Fund
September 10, 2020
•[ social, phishing, government ]
Strontium has targeted The German Marshall Fund of the United States, among other think-tanks, as part of a phishing campaign ahead of the 2020 election.
Essex Region Conservation Authority (ERCA)
September 4, 2020
•[ financial, phishing, government ]
The Essex Region Conservation Authority (ERCA) loses $300,000 to a phishing scam.
Pandu Riono
August 28, 2020
•[ hack, phishing, education ]
The Twitter account of Pandu Riono, an epidemiologist from the University of Indiana, is hacked.
NHS
August 12, 2020
•[ social, phishing, healthcare ]
A report reveals that NHS staff were hit with a wave of malicious email attacks at the height of the COVID-19 pandemic, with doctors, nurses and other key workers reporting over 40,000 spam and phishing attacks between March and the first half of July.
Virtu Financial
August 10, 2020
•[ financial, phishing, finance ]
High-speed trading firm Virtu Financial says it lost $6.9 million in a business email compromise scam in May.
SANS
August 6, 2020
•[ social, phishing, education ]
The SANS cybersecurity training organization has suffered a data breach after one of their employees fell victim to a phishing attack.
Einstein Healthcare Network
August 5, 2020
•[ hack, phishing, healthcare ]
Einstein Healthcare Network has notified patients that a number of employees' email accounts were accessed by an unauthorized third-party.
Tacoma Public Schools
August 3, 2020
•[ hack, phishing, education ]
The Tacoma Public Schools email platform is hacked and sends out phishing emails.
Elkins Rehabilitation & Care Center
July 31, 2020
•[ social, phishing, healthcare ]
Elkins Rehabilitation & Care Center notifies residents and employees of a phishing attack discovered in February 2019.
European Bank for Reconstruction and Development (EBRD) Twitter account
July 29, 2020
•[ hack, phishing, government ]
The European Bank for Reconstruction and Development (EBRD) Twitter account is hijacked.
Legacy Community Health
July 28, 2020
•[ social, phishing, healthcare ]
Legacy Commmunity Health's notification indicates that an employee fell for a phishing attack on July 28. The compromise was detected on July 29. Although they have no indications of misuse, patient information in emails in that employee's mailbox contained some patients names, dates of service, and health information related to care at Legacy. "In limited instances," the notification reads, the email account also included patient Social Security numbers.
Mattapan Community Health Center (MCHC)
July 28, 2020
•[ social, phishing, healthcare ]
Mattapan Community Health Center (MCHC) provides notice of a phishing incident involving potential unauthorized access to personal information.
Beaumont Health
July 25, 2020
•[ social, phishing, healthcare ]
Beaumont Health, Michigan's largest healthcare provider warns around 6,000 patients that their data may have been exposed following a phishing attack that occurred between January 3, 2020, and January 29, 2020.
DeepSource
July 21, 2020
•[ social, phishing, technology ]
DeepSource resets the user logins after an employee falls for the Sawfish phishing campaign.
