Wallace Community College Selma
February 24, 2018
•[ leak, phishing, education ]
Personal and financial information of current and former employees of Wallace Community College Selma is leaked through a phishing scam.
Curtis Lumber
February 22, 2018
•[ social, phishing, retail ]
Curtis Lumber is the victim of a spear phishing attack.
University of Alaska
February 22, 2018
•[ hack, phishing, education ]
Dozens of current and former employees and students of the University of Alaska are unable to access their Alaska.edu accounts. According to the investigation, user passwords have been changed by a third party.
City of Enumclaw
February 7, 2018
•[ social, phishing, government ]
The city of Enumclaw accidentally sends an email to an "individual pretending to be a member of City administration" and compromises the W-2s of hundreds of employees.
City of Keokuk
February 4, 2018
•[ leak, phishing, government ]
The City of Keokuk says a data breach resulted in the release of personal information of current and former city employees and elected leaders. An unauthorized party was able to obtain 2017 W-2 tax forms through the use of a "criminal phishing email."
Purchase Line School District
February 1, 2018
•[ social, phishing, education ]
The Purchase Line School District is the victim of a email spoofing attack by an individual pretending to be a school district employee.
City of Pittsburg, Kansas
February 1, 2018
•[ social, phishing, government ]
The City of Pittsburg in Kansas reveals to have been subjected to a sophisticated phishing scheme targeting employee payroll data. The attack results in the release of sensitive information for current and former city employees who received a W-2 for the 2017 fiscal year.
HORNE LLP
February 1, 2018
•[ leak, phishing, finance ]
HORNE LLP notifies an incident affecting the security of protected health information of certain Forrest General Hospital patients. On November 1, 2017, the company discovered that the email account of one of its employees was sending phishing emails.
Users participating to the ICO of the Bee Token Crypto Currency
January 31, 2018
•[ social, phishing, finance ]
Users who were aiming to buy Bee Tokens during a Token Generation Event (i.e., an initial coin offering) are tricked into sending the money to scammers instead. The attackers steal nearly $1M worth of cryptocurrency.
Harris County
January 24, 2018
•[ financial, phishing, government ]
Harris County lose almost $900K in a phishing scam. The attack dates back to September 2017.
David Clarke Jr. Twitter Account
January 22, 2018
•[ hack, phishing, technology ]
The Turkish Cyber Army hacking group strikes again and hijacks the Twitter account of vocal Donald Trump supporter and ex-Milwaukee County Sheriff David Clarke Jr.
Charlotte Housing Authority
January 19, 2018
•[ social, phishing, government ]
341 employees of the Charlotte Housing Authority have their W-2 forms compromised after scammers sent CHA staffers an e-mail pretending to be from CEO.
Monticello Central Strict District
January 12, 2018
•[ social, phishing, education ]
Monticello Central School District warns of a sophisticated e-mail phishing attack occurred on November 1st, 2017. Potentially 2,598 individuals are affected.
Onco360
January 8, 2018
•[ hack, phishing, healthcare ]
Onco360 notifies a phishing incident involving an employee's email account and affecting potentially 53,000 users.
Florida's Agency for Health Care Administration (FAHCA)
January 6, 2018
•[ social, phishing, healthcare ]
A phishing attack on an employee at Florida's Agency for Health Care Administration (discovered in November 20, 2017) results in the exposure of sensitive information on 30,000 Medicaid patients.
Miracle-Ear
December 29, 2017
•[ hack, phishing, retail ]
Miracle-Ear Inc. says that 554 patient records have been compromised in a security breach of its e-mail system. The incident occurred Oct. 24, when "an unknown and unauthorized intruder" gained access to the e-mail account of an employee of Miracle-Ear's parent company Amplifon.
Veyna & Forschino
December 23, 2017
•[ hack, phishing, finance ]
Veyna & Forschino disclose a breach involving an unauthorized access to a company email. Compromised information includes individuals' name, date of birth, telephone numbers, address, Social Security number, W-2 information, 1099 records (including account number if provided), and direct deposit bank account information.
Colorado Mental Health Institute
December 22, 2017
•[ social, phishing, healthcare ]
Colorado Mental Health Institute notifies 650 patients after a phishing incident.
Bitcoin Insiders in London
December 15, 2017
•[ social, phishing, finance ]
Secureworks reveals a new spearphishing campaign circulating across bitcoin industry insiders in London, carried on via a fake job opening, and aimed to steal their online credentials. The fingers are pointed to the North Korean hackers of the Lazarus Group.
