Montrose Environmental Group
June 13, 2022
•[ ransomware, malware, technology ]
Montrose Environmental Group, a US-based provider of environmental services, reveals it was hit by a ransomware attack last weekend that disrupted its laboratory testing operations.
ER-Telecom Holding
June 9, 2022
•[ hack, technology ]
The NB65 group claim to have gained access to surveillance footage, looked at sensitive data, stored credentilas as well as got access to 5TB fo surveillance footage.
Kommersant FM
June 8, 2022
•[ hack, technology ]
The online bulletin broadcast of a Russian radio station, Kommersant FM, is interrupted when the content was replaced with the Ukrainian national anthem and antiwar songs.
Unidentified Telecommunications company
June 7, 2022
•[ espionage, technology ]
The NSA, CISA, and the FBI reveal that Chinese-backed threat actors have targeted and compromised major telecommunications companies and network service providers to steal credentials and harvest data.
OLL.TV
June 5, 2022
•[ hack, misconfiguration, technology ]
According to the State Service of Special Communications and Information Protection of Ukraine (SSSCIP), the broadcast of the Football World Cup 2022 qualifier game between Wales and Ukraine is interrupted in Ukraine by a cyberattack that targeted OLL.TV, a Ukrainian online broadcasting platform. SSSCIP claims that malicious actors succeeded in gaining access to a Content delivery network (CDN) nod and rerouted the traffic. Ukrainian authorities temporarily stopped the broadcast to restart the traffic.
Innovative Service Technology Management Services
June 3, 2022
•[ ransomware, malware, technology ]
Innovative Service Technology Management Services reports a data breach after the company experienced a ransomware attack targeting its computer system.
SATT Sud-Est
June 2, 2022
•[ ransomware, malware, technology ]
SATT Sud-Est is the first victim of a new modus operandi by a ransomware gang dubbed Industrial Spy that compromises the victim's website to announce the attack.
MemeChat
June 1, 2022
•[ leak, misconfiguration, technology ]
In mid-2022, "the ultimate hub of memes" MemeChat suffered a data breach that exposed 7.4M records. Alleged to be due to a misconfigured Elasticsearch instance, the data contained 4.3M unique email addresses alongside usernames.
Pegasus Airlines
May 30, 2022
•[ leak, misconfiguration, technology ]
Turkish flight operator Pegasus Airlines suffers a data breach after an AWS cloud storage bucket is reportedly left unprotected and there was unauthorized access to certain information held by carrier.
Verizon
May 26, 2022
•[ hack, misconfiguration, technology ]
A hacker obtains a database that includes the full name, email address, corporate ID numbers, and phone number of hundreds of Verizon employees.
WiredBucks
May 25, 2022
•[ leak, misconfiguration, technology ]
In May 2022, the now defunct social media influencer platform WiredBucks suffered a data breach that was later redistributed as part of a larger corpus of data. The incident exposed over 900k email and IP addresses alongside names, usernames, earnings via the platform, physical addresses and passwords stored as plain text.
QuestionPro
May 21, 2022
•[ hack, misconfiguration, technology ]
In May 2022, the survey website QuestionPro was the target of an extortion attempt relating to an alleged data breach. Over 100GB of data containing 22M unique email addresses (some of which appear to be generated by the platform), are alleged to have been extracted from the service along with IP addresses, browser user agents and results relating to surveys. QuestionPro would not confirm whether a breach had occurred (although they did confirm they were the target of an extortion attempt), so the data was initially flagged as "unverified". Subsequent verification by impacted HIBP subscribers later led to the removal of the unverified flag.
Italian airports of Malpensa, Linate and Orio al Serio
May 20, 2022
•[ hack, ddos, technology ]
The websites of the Italian airports of Malpensa, Linate and Orio al Serio are taken down by the pro-Russian Killnet collective.
Nikkei
May 13, 2022
•[ ransomware, malware, technology ]
Publishing giant Nikkei discloses that the group's headquarters in Singapore was hit by a ransomware attack on May 13, 2022.
Trans Technology Pte Ltd.
May 11, 2022
•[ ransomware, leak, malware ]
Vice Society encrypts network and threatens to leak data on their dark web portal.
Opus Interactive
May 9, 2022
•[ ransomware, malware, technology ]
Opus Interactive, a web hosting provider, is hit with a ransomware attack.
Ukrainian News Agencies
May 9, 2022
•[ hack, ddos, technology ]
Large-scale DDoS attack against leading telecommunications companies in Ukraine resulted in partial inaccessibility of their websites.
Russian TV
May 9, 2022
•[ hack, misconfiguration, technology ]
During the Russian President Putin's speech at today's "Victory Day" military parade, pro-Ukrainian hacking groups defaced the online Russian TV schedule page to display anti-war messages.
BlackBerry Fans
May 6, 2022
•[ hack, misconfiguration, technology ]
In May 2022, the Chinese BlackBerry enthusiasts website BlackBerry Fans suffered a data breach that exposed 174k member records. The impacted data included usernames, email and IP addresses and passwords stored as salted MD5 hashes.
