DailyMotion
January 25, 2019
•[ hack, brute-force, technology ]
Video sharing platform DailyMotion announces that it was the victim of a credential stuffing attack.
WordPress Multilingual Plugin (WPML) users
January 19, 2019
•[ hack, xss, technology ]
The web site for the WordPress Multilingual Plugin (WPML) WordPress plugin is hacked and users of the plugin start receiving emails stating that the plugin is filled with vulnerabilities.
The Shift News
January 14, 2019
•[ hack, ddos, technology ]
The Shift News suffers a DDoS attack, following the publication of a series of investigative stories on a hospitals deal.
ixigo
January 3, 2019
•[ leak, misconfiguration, technology ]
In January 2019, the travel and hotel booking site ixigo suffered a data breach. The data appeared for sale on a dark web marketplace the following month and included over 17M unique email addresses alongside names, genders, phone numbers, connections to Facebook profiles and passwords stored as MD5 hashes. The data was provided to HIBP by a source who requested it to be attributed to "BenjaminBlue@exploit.im".
Armor Games
January 1, 2019
•[ hack, technology ]
In January 2019, the game portal website Armor Games suffered a data breach. A total of 10.6 million email addresses were impacted by the breach which also exposed usernames, IP addresses, birthdays of administrator accounts and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by a source who requested it be attributed to "JimScott.Sec@protonmail.com".
