Victorian government
January 1, 2019
•[ leak, phishing, government ]
The work details of 30,000 Victorian public servants have been stolen in a data breach, after part of the Victorian Government directory was downloaded by an unknown party after an employee's email account is compromised.
Residential Mortgage Services, Inc.
January 1, 2019
•[ social, phishing, finance ]
This cyber breach allegedly arose when a RMS employee clicked on a hyperlink in a phishing email that falsely appeared to originate from a RMS business partner. The RMS employee provided her email credentials to the malicious website opened by the hyperlink.
Sen. Claire McCaskill
December 31, 2018
•[ espionage, phishing, government ]
Sen. Claire McCaskill and her staffers are the targets of a spear phishing campaign allegedly orchestrated by the infamous Fancy Bear AKA APT28.
College of Eastern Idaho
December 28, 2018
•[ hack, phishing, education ]
College of Eastern Idaho notifies a security incident discovered on September 5, 2018, when suspicious email activity was detected within an employee's email account.
Family Physicians Group
December 28, 2018
•[ social, phishing, healthcare ]
Family Physicians Group notifies more than 8,000 patients about a phishing attack on an employee's email account. Patient data may have been exposed between Aug. 7 and Aug. 21, 2018, when the company discovered the attack.
Westminster College
December 28, 2018
•[ social, phishing, education ]
Westminster College in Salt Lake City, Utah notifies people after eleven of their employees fell prey to phishing attacks.
Evercore
December 23, 2018
•[ hack, phishing, finance ]
Thousands of sensitive documents have been stolen by hackers in a cyber-attack on the influential investment bank Evercore, after an employee in London falls victim of a phishing attack.
San Diego Unified School District (SDUSD)
December 21, 2018
•[ social, phishing, education ]
The San Diego Unified School District (SDUSD) reveals that PII of more than a half million students and staff were compromised as the result of a phishing attack that may have occurred as early as January 2018.
Electrum Bitcoin wallets
December 21, 2018
•[ social, phishing, finance ]
A clever phishing attack targeting Electrum Bitcoin wallets results in the theft of more than $750,000 worth of cryptocurrency.
Ministry of Foreign Affairs of Cyprus
December 19, 2018
•[ espionage, phishing, government ]
A report by Area 1 Security reveals that a successful phishing attack on the Ministry of Foreign Affairs of Cyprus, an EU member nation, compromised the diplomatic communication network for the European Union (COREU).
San Francisco State University
December 4, 2018
•[ hack, phishing, education ]
Dozens of San Francisco State University student accounts are hacked in a phishing attack.
Cancer Treatment Centers of America
December 3, 2018
•[ social, phishing, healthcare ]
Cancer Treatment Centers of America notifies almost 42,000 patients of possible access to their protected health information after a phishing attack occurred on May 2 and discovered on September 26.
Town of Christiansburg
November 29, 2018
•[ social, phishing, government ]
The information of 900 people of Christiansburg is compromised in a phishing scam.
Georgia Spine and Orthopaedics of Atlanta
November 28, 2018
•[ social, phishing, healthcare ]
Georgia Spine and Orthopaedics of Atlanta notifies 7,012 patients after a phishing attack occurred on July 2018.
East Tennessee State University
November 19, 2018
•[ social, phishing, education ]
Two employees at East Tennessee State University fall for an email phishing scam and pave the way for a breach at the school.
New York Oncology Hematology
November 16, 2018
•[ social, phishing, healthcare ]
New York Oncology Hematology notifies nearly 130,000 patients and employees that it was the victim of a phishing attack occurred between April 20 and April 27.
UK Engineering Company
November 13, 2018
•[ espionage, phishing, manufacturing ]
Researchers from Recorded Future reveal the details of a spear phishing campaign carried out by the Chinese TEMP.Periscope group against a UK based engineering company, leveraging Russian APT Techniques.
Health First, Inc.
November 12, 2018
•[ social, phishing, healthcare ]
Health First, Inc. notifies 42,000 patients after a phishing incident.
Southwest Washington Regional Surgery Center
November 8, 2018
•[ leak, phishing, healthcare ]
Southwest Washington Regional Surgery Center notifies 2,393 patients after phishing attack exposed their PHI.
WPSandbox
November 4, 2018
•[ leak, phishing, technology ]
In November 2018, the WordPress sandboxing service that allows people to create temporary websites WP Sandbox discovered their service was being used to host a phishing site attempting to collect Microsoft OneDrive accounts. After identifying the malicious site, WP Sandbox took it offline, contacted the 858 people who provided information to it then self-submitted their addresses to HIBP. The phishing page requested both email addresses and passwords.
