Mariah Carey
December 31, 2019
•[ hack, technology ]
Mariah Carey's Twitter account appears to have been hacked.
Active Network
December 30, 2019
•[ hack, technology ]
School software vendor Active Network notifies to have suffered a breach between Oct. 1, 2019 and Nov. 13, 2019, when there was illegal activity taking place on its Blue Bear platform during which time personal information was accessed or acquired by malicious actors.
BtoBet
December 26, 2019
•[ leak, misconfiguration, technology ]
In December 2019, a large collection of data from Nigerian gambling company Surebet247 was sent to HIBP. Alongside the Surebet247, database backups from gambling sites BetAlfa, BetWay, BongoBongo and TopBet was also included. Further investigation implicated betting platform provider BtoBet as being the common source of the data. Impacted data included user records and extensive information on gambling histories.
Almex
December 24, 2019
•[ hack, technology ]
Almex, a booking site for customers of Japanese "love hotels" is hacked. Customer data including guest email addresses, handle name, birth date and gender, telephone number, log-ins, address and credit card information could all have been swiped by attackers.
Synoptek
December 23, 2019
•[ ransomware, malware, technology ]
Synoptek, a California business that provides cloud hosting and IT management services, suffers a Sodinokibi ransomware attack that disrupts operations for many of its clients. The company reportedly pays a ransom demand in a bid to restore operations as quickly as possible.
Entercom
December 22, 2019
•[ hack, technology ]
Entercom is targeted in a new cyberattack that may have impacted the back-office functions.
Master's Touch, LLC
December 20, 2019
•[ hack, malware, technology ]
Monroe County reveals to have been alerted on Nov. 1 that Master's Touch, LLC, which provides the online Web portal fell victim to a malware attack on Oct. 23.
baltictimes
December 19, 2019
•[ espionage, hack, technology ]
Ghostwriter, a suspected Belarus-backed hacking group, has compromised websites and email accounts in Latvia, Lithuania, and Poland'to publish fabricated documents pushing anti-North Atlantic Treaty Organization (NATO) narratives consistent with Kremlin talking points. The influence campaign started in 2017.
Nexus Mods
December 19, 2019
•[ hack, technology ]
The popular game modification site Nexus Mods announces a security incident: an unauthorized actor hacked their services on November 8th, 2019 through an exploit in their legacy codebase.
Avvo
December 17, 2019
•[ leak, misconfiguration, technology ]
In approximately December 2019, an alleged data breach of the lawyer directory service Avvo was published to an online hacking forum and used in an extortion scam (it's possible the exposure dates back earlier than that). The data contained 4.1M unique email addresses alongside SHA-1 hashes, most likely representing user passwords. Multiple attempts at contacting Avvo over the course of a week were unsuccessful and the authenticity of the data was eventually verified with common Avvo and HIBP subscribers.
GameSprite
December 17, 2019
•[ leak, technology ]
In December 2019, the now defunct gaming platform GameSprite suffered a data breach that exposed over 6M unique email addresses. The impacted data also included usernames, IP addresses and salted MD5 password hashes.
Go Ninja
December 17, 2019
•[ hack, technology ]
In December 2019, the now defunct German gaming website Go Ninja suffered a data breach that exposed 5M unique email addresses. The impacted data included usernames, email and IP addresses and salted MD5 password hashes. More than 4M of the email addresses appeared to have been generated as opposed to organically provided by the user.
SoarGames
December 16, 2019
•[ leak, misconfiguration, technology ]
In December 2019, the now defunct gaming website SoarGames suffered a data breach that exposed 4.8M unique email addresses. The impacted data included usernames, email and IP addresses and salted MD5 password hashes. A significant number of the email addresses appeared to have been generated as opposed to organically provided by the user.
