Radixx
April 20, 2021
•[ hack, malware, technology ]
A malware attack on Radixx trigger a dayslong outage causing reservations systems to crash at about 20 low-cost airlines around the world.
Sectors in public administration, telecommunications, energy and the IT in Slovakia
April 16, 2021
•[ ransomware, malware, government ]
Multiple targets in Slovakia are hit with a ransomware attack.
Atmeltomo
April 16, 2021
•[ hack, sqlinjection, technology ]
In April 2021, "Japan's largest e-mail friend search site" Atmeltomo suffered a data breach that was later sold on a popular hacking forum. The breach exposed 1.3M records with 580k unique email addresses along with usernames, IP addresses and unsalted MD5 password hashes.
DigitalOcean
April 9, 2021
•[ leak, technology ]
DigitalOcean emails customers warning of a data breach involving customers' billing data.
SlideTeam
April 6, 2021
•[ hack, misconfiguration, technology ]
In April 2021, the "worlds largest collection of pre-designed presentation slides" SlideTeam had 1.4M records breached and later published to a popular hacking forum the following year. Allegedly sourced from a compromised Magento instance, the data included names, email addresses and passwords stored as salted hashes.
Channel Nine
March 28, 2021
•[ ransomware, malware, technology ]
A ransomware attack hits the Australian Channel Nine's live broadcasts causing the disruption of its operations, despite the reason seems a retaliatory act.
ParkMobile
March 26, 2021
•[ leak, technology ]
Someone is selling account information for 21 million customers of ParkMobile, a mobile parking app that's popular in North America.
MND
March 24, 2021
•[ hack, technology ]
MND reveals to have been hit by a cyber attack.
Avianis
March 23, 2021
•[ leak, misconfiguration, technology ]
Private aviation services provider Solairus Aviation announces that some employee and customer data was compromised in a security incident at third-party vendor Avianis.
MangaDex
March 22, 2021
•[ hack, misconfiguration, technology ]
In March 2021, the manga fan site MangaDex suffered a data breach that resulted in the exposure of almost 3 million subscribers. The data included email and IP addresses, usernames and passwords stored as bcrypt hashes. The data was subsequently circulated within hacking groups.
Metro Presort
March 16, 2021
•[ ransomware, malware, technology ]
Metro Presort in Oregon reports a ransomware attack 21 months after it occurred.
Blender
March 15, 2021
•[ hack, technology ]
Blender.org, the official website of the popular 3D computer graphics software Blender, is now in maintenance mode according to a message displayed on the site.
"The http://blender.org website is undergoing maintenance due to a hacking attempt," the official Blender account on Twitter said.
IDC Games
March 15, 2021
•[ leak, hack, technology ]
In March 2021, 4 million records sourced from IDC Games were shared on a public hacking forum. The data included usernames, email addresses and passwords stored as salted MD5 hashes.
WeLeakInfo
March 11, 2021
•[ leak, technology ]
A user on a popular hacker forum is selling a database containing highly sensitive information of more than 24,000 customers of the now-defunct illegal online service WeLeakInfo.
BTS TikTok account
March 10, 2021
•[ hack, technology ]
The TikTok account of South Korean boy band BTS has been hacked.
Verkada Inc.
March 9, 2021
•[ hack, technology ]
A group of hackers say they breached a massive trove of security-camera data collected by Silicon Valley startup Verkada Inc., gaining access to live feeds of 150,000 surveillance cameras inside hospitals, companies, police departments, prisons and schools.
Equinox
March 9, 2021
•[ hack, misconfiguration, technology ]
Hackers gained access to live surveillance cameras installed at Tesla, Equinox, healthcare clinics, jails, and banks, including the Bank of Utah. In addition to images captured from the cameras, the hacker also shared screenshots of their ability to gain root shell access to the surveillance systems used by Cloudflare and at Telsa HQ.
WeLeakInfo
March 8, 2021
•[ leak, misconfiguration, technology ]
In March 2021, the Stripe account of the now-defunct WeLeakInfo service was taken over by "pompompurin" after acquiring an expired domain name with an email address used to manage the account. Access to Stripe then exposed almost 12k unique email addresses from customers who'd made credit card payments in order to obtain breached data hosted by WeLeakInfo. The data was subsequently leaked publicly and also included names, payment histories, IP addresses, billing addresses, partial credit card data and the organisation making the purchase.
Liker
March 8, 2021
•[ hack, misconfiguration, technology ]
In March 2021, the self-proclaimed "kinder, smarter social network" Liker suffered a data breach, allegedly in retaliation for the Gab data breach and scraping of data from Parler. The site remained offline after the breach which exposed 465k email addresses in addition to names, dates of birth, education levels, private messages, security questions and answers in plain text, passwords stored as bcrypt hashes and other personal data attributes. Liker did not respond when contacted about the breach.
Robotron
March 7, 2021
•[ ransomware, malware, technology ]
Robotron, a provider of backup software, is hit with an attack that installs ransomware on the networks of its clients. The latest automatic update of the Robotron Werkzeugkasten installed installed a new ransomware called BlockKopieren.
