LAVA
July 29, 2022
•[ ransomware, leak, malware ]
SNATCH executed exfiltration of data and ransomeware in targeted network. Data presented on dark web "leak site"
TNQ Technologies
July 28, 2022
•[ ransomware, leak, malware ]
ALPHVM Leaks data on their ransomware drop site on the dark web.
911[.]re
July 28, 2022
•[ leak, technology ]
911[.]re, a proxy service that since 2015 has sold access to hundreds of thousands of Microsoft Windows computers daily, announces that it is shutting down in the wake of a data breach that destroyed key components of its business operations.
NetStandard
July 27, 2022
•[ ransomware, malware, technology ]
A US managed service provider, NetStandard, suffers a possible ransomware attack causing the company to shut down its cloud services.
Twitter
July 22, 2022
•[ leak, vulnerability, technology ]
Twitter suffers a data breach after threat actors used a vulnerability to build a database of phone numbers and email addresses belonging to 5.4 million accounts, with the data now up for sale on a hacker forum for $30,000.
Liberty Counsel
July 22, 2022
•[ hack, leak, technology ]
In name of OperationJane, pro-choice hacktivists leak more than 74 gigabytes of data connected to evangelical organizations from Liberty Counsel. The data is allegedly obtained after hacking WMTEK, a company that offers web design and website management.
Exvagos
July 21, 2022
•[ leak, technology ]
In July 2022, the direct download website Exvagos suffered a data breach that was later redistributed as part of a larger corpus of data. The breach exposed 2.1M unique email addresses along with IP addresses, usernames, dates of birth and MD5 password hashes.
MWD Digital
July 21, 2022
•[ ransomware, malware, technology ]
MVD Digital, an Italian company of digital services, is hit with a LockBit 3.0 ransomware attack.
Entrust
July 21, 2022
•[ ransomware, malware, technology ]
Digital security giant Entrust confirms that it suffered a ransomware attack where threat actors breached their network and stole data from internal systems.
Neopets
July 20, 2022
•[ hack, technology ]
Virtual pet website Neopets has suffered a data breach leading to the theft of source code and a database containing the personal information of over 69 million members.
Cleartrip
July 18, 2022
•[ hack, technology ]
Popular Indian flight booking site Cleartrip announces a data breach involving the unauthorized access to the information of an unknown number of victims.
Hjedd
July 18, 2022
•[ leak, misconfiguration, technology ]
In July 2022, the Chinese adult website Hjedd was found to be leaking more than 13M customer records which subsequently appeared on a popular hacking forum. The exposed data included email and IP addresses, usernames and passwords stored as bcrypt hashes.
Undisclosed US-based media organization
July 14, 2022
•[ espionage, technology ]
Researchers from Proofpoint reveal the details of a campaign carried out by the North Korean threat group Lazarus Group (AKA TA404) targeting an undisclosed US-based media organization.
WordFly
July 10, 2022
•[ ransomware, malware, technology ]
WordFly, a tech company providing digital marketing for dozens of the most popular cultural organizations in several countries, is hit with a ransomware attack.
Rogers Communications
July 9, 2022
•[ leak, technology ]
Attackers post an ad on a mostly Russian-speaking hacker forum, putting on sale a database allegedly belonging to Rogers Communications, a Canadian company providing wireless, cable, and internet services.
La Poste Mobile
July 8, 2022
•[ ransomware, malware, technology ]
French mobile phone network La Poste Mobile is hit by a ransomware attack that has crippled its administrative and management services.
SHI International
July 6, 2022
•[ hack, malware, technology ]
SHI International, a provider of Information Technology products and services, confirms that a malware attack hit its network over the weekend.
Mangatoon
July 5, 2022
•[ hack, misconfiguration, technology ]
Comic reading platform Mangatoon suffers a data breach that exposed information belonging to 23 million user accounts after a hacker stole it from an unsecured Elasticsearch database.
Multiple organizations in Japan
July 5, 2022
•[ espionage, malware, technology ]
The Japan CERT (JPCERT) discover a new version of the VSingle malware, used by the Lazarus Group, able to retrieve the C2 servers information from GitHub.
