ITarian
September 30, 2019
•[ hack, technology ]
ITarian, also owned by Comodo is hit by the same attack (that's probably the origin of the breach).
Zynga
September 29, 2019
•[ hack, technology ]
Gnosticplayers claims to have stolen more than 218 million records from Words with Friends a popular mobile social game from Zynga Inc.
Billboard on Interstate 75
September 28, 2019
•[ hack, misconfiguration, technology ]
Two individuals play an adult pornography video on a billboard on Interstate 75 near Michigan highway 59.
Zooville
September 27, 2019
•[ hack, misconfiguration, technology ]
In September 2019, the zoophilia and bestiality forum Zooville suffered a data breach. The usernames and email addresses of 71k members were accessed via an unpatched vulnerability in the vBulletin forum software then subsequently distributed online. A second data set was later provided to HIBP which contained a complete vBulletin database dump including IP addresses, dates of birth and passwords stored as bcrypt hashes. The site administrator advised that following the breach, all data had been deleted from the forum and a new one had been stood up on the XenForo platform. The data was provided to HIBP by a source who requested it be attributed to "burger vault".
DoorDash
September 26, 2019
•[ hack, technology ]
DoorDash announces that the personal data of 4.9 million people on its platform has been compromised in a security breach. The breach occurred on May 4.
Vmedia
September 25, 2019
•[ hack, technology ]
Vmedia reveals that its forum has been compromised and shuts it down temporarily, urging users to change password.
Laura Pausini Instagram account
September 24, 2019
•[ hack, technology ]
The Instagram profile of the Italian singer Laura Pausini is hacked and starts to promote giveaways.
Cool Ideas
September 21, 2019
•[ hack, ddos, technology ]
A prolonged DDoS attack takes down Cool Ideas, one of South Africa's largest ISPs.
Yanet Garcia Instagram account
September 16, 2019
•[ hack, technology ]
The Instagram account of Yanet Garcia is hacked.
Nicole Scherzinger Instagram account
September 16, 2019
•[ hack, technology ]
The Instagram account of singer-songwriter Nicole Scherzinger is hacked.
Lumin PDF
September 16, 2019
•[ hack, technology ]
The details of over 24.3 million Lumin PDF users have been shared today on a hacking forum
The Guardian's SecureDrop whistleblower submission site
September 14, 2019
•[ social, phishing, technology ]
The Guardian's SecureDrop whistleblower submission site is targeted with a phishing page that attempts to harvest the unique "codenames" for sources who submitted information using the service.
KiwiFarms
September 10, 2019
•[ leak, technology ]
In September 2019, the forum for discussing "lolcows" (people who can be milked for laughs) Kiwi Farms suffered a data breach. The disclosure notice advised that email and IP addresses, dates of birth and content created by members were all exposed in the incident.
Entercom Communications
September 7, 2019
•[ ransomware, malware, technology ]
Entercom Communications, one of the largest radio station owners in the U.S. is allegedly hit by a ransomware, affecting all offices the company has across the country.
Wikipedia
September 6, 2019
•[ hack, ddos, technology ]
Wikipedia is forced offline in several countries after a cyber attack hits the global encyclopedia.
Robert Downey Jr. Instagram account
September 6, 2019
•[ hack, technology ]
The Instagram account of Robert Downey Jr. is hacked. The attackers post fake giveaways for Apple products.
World of Warcraft Classic
September 6, 2019
•[ hack, ddos, technology ]
World of Warcraft Classic is also hit by a DDoS attack.
Zynga
September 1, 2019
•[ hack, technology ]
In September 2019, game developer Zynga (the creator of Words with Friends) suffered a data breach. The incident exposed 173M unique email addresses alongside usernames and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by dehashed.com.
EpicBot
September 1, 2019
•[ hack, technology ]
In September 2019, the RuneScape bot provider EpicBot suffered a data breach that impacted 817k subscribers. Data from the breach was subsequently shared on a popular hacking forum and included usernames, email and IP addresses and passwords stored as either salted MD5 or bcrypt hashes. EpicBot did not respond when contacted about the incident.
CircleCI
August 31, 2019
•[ leak, misconfiguration, technology ]
Software testing and delivery company CircleCI notifies a security incident involving the company and a third-party analytics vendor. An attacker was able to improperly access some user data in the vendor account.
