AnimeLeague
July 4, 2024
•[ leak, sqlinjection, technology ]
In July 2024, AnimeLeague disclosed a data breach of their services. The data was posted for sale on a popular hacking forum and included 2 databases covering both event registration records and a dump of the phpBB bulletin board. The impacted data included passwords in various hashed formats including SHA-1, salted md5 and bcrypt, as well as usernames, private messages, dates of birth, purchases and 192k unique email addresses.
pcTattletale
May 25, 2024
•[ hack, sqlinjection, technology ]
In May 2024, the spyware service pcTattletale suffered a data breach that defaced the website and posted tens of gigabytes of data to the homepage, allegedly due to pcTattletale not responding to a previous security vulnerability report. The breach exposed data including membership records, infected PC names, captured messages and extensive logs of IP addresses and device information.
CBIZ KA
December 6, 2023
•[ leak, sqlinjection, healthcare ]
CBIZ KA, a revenue cycle management vendor is affected by a MOVEit breach. Nine of Ontario Prime Healthcare's hospitals are affected.
State of Maine
November 10, 2023
•[ leak, sqlinjection, government ]
The State of Maine announces that its systems were breached after threat actors exploited the vulnerability in the MOVEit file transfer tool and accessed personal information of about 1.3 million, which is close to the state's entire population.
Kearny Bank
October 25, 2023
•[ leak, sqlinjection, finance ]
Kearny Bank joins the list of the victims of the massive MOVEit attack.
MUSC Health
October 17, 2023
•[ hack, sqlinjection, healthcare ]
MUSC Health says patients' protected health information may have been compromised as its research support and services provider, Westat, was caught in the massive MOVEit hack.
Cognisight
October 13, 2023
•[ leak, sqlinjection, healthcare ]
Cognisight files notice of data breach after discovering that the CVE-2023-34362 vulnerability within MOVEit resulted in the exposure of consumers' personal information.
Arietis Health
September 28, 2023
•[ leak, sqlinjection, healthcare ]
Arietis Health is added to the list of entities affected by the MOVEit breach. 1,975,066 individuals are affected.
West Virginia University Health System
September 26, 2023
•[ leak, sqlinjection, healthcare ]
West Virginia University Health System posts a website notice informing patients of a third-party data breach involving an incident that occurred at Nuance Communications exploiting the MOVEit vulnerability.
Celink
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Celink affected by a data breach at Sovos involving the MOVEit file transfer application.
Pan-American Life Insurance Group
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Pan-American Life Insurance Group affected by a data breach at Sovos involving the MOVEit file transfer application.
Bangor Savings Bank
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Bangor Savings Bank affected by a data breach at Sovos involving the MOVEit file transfer application.
Patelco Credit Union
September 22, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files another notice of data breach on behalf of Patelco Credit Union affected by a data breach at Sovos involving the MOVEit file transfer application.
Central Carolina Medical Center
September 15, 2023
•[ ransomware, sqlinjection, healthcare ]
The healthcare technology firm Nuance reveals that the Clop extortion gang has stolen personal data on Central Carolina Medical Center as part of the Progress MOVEit Transfer campaign.
ECU Health
September 15, 2023
•[ ransomware, sqlinjection, healthcare ]
The healthcare technology firm Nuance reveals that the Clop extortion gang has stolen personal data on ECU Health as part of the Progress MOVEit Transfer campaign.
UNC Health
September 15, 2023
•[ leak, sqlinjection, healthcare ]
The healthcare technology firm Nuance reveals that the Clop extortion gang has stolen personal data on UNC Health as part of the Progress MOVEit Transfer campaign.
Wake Radiology Diagnostic Imaging
September 15, 2023
•[ ransomware, sqlinjection, healthcare ]
The healthcare technology firm Nuance reveals that the Clop extortion gang has stolen personal data on Wake Radiology Diagnostic Imaging as part of the Progress MOVEit Transfer campaign.
RoundPoint Mortgage Servicing
August 29, 2023
•[ leak, sqlinjection, finance ]
Sovos Compliance files a notice of data breach on behalf of RoundPoint Mortgage Servicing after discovering that the MOVEit breach affected their data.
Continental Casualty Company (CNA)
August 25, 2023
•[ hack, sqlinjection, finance ]
Pension Benefit Information (PBI) files a notice of data breach on behalf of Continental Casualty Company (CNA) after learning about the MOVEit-related data breach affecting CNA customers.
Sovos Compliance
August 23, 2023
•[ leak, sqlinjection, technology ]
Sovos Compliance files a notice of data breach on behalf of several companies after learning to have been affected by the MOVEit vulnnerability.
