Elector
February 12, 2024
•[ government, leak, technology ]
Researchers from Resecurity identify a data leak of 6,453,254 Israeli voter records due to the breach of Elector, an Israeli software application used to manage political campaigns.
iTITAN Hosting
February 6, 2024
•[ hack, technology ]
iTITAN Hosting, another hosting provider in Romania, suffers a data breach.
Hewlett Packard Enterprise
February 1, 2024
•[ leak, technology ]
Hewlett Packard Enterprise (HPE) is investigating a potential new breach after a threat actor put allegedly stolen data up for sale on a hacking forum, claiming it contains HPE credentials and other sensitive information.
SurveyLama
February 1, 2024
•[ leak, technology ]
In February 2024, the paid survey website SurveyLama suffered a data breach that exposed 4.4M customer email addresses. The incident also exposed names, physical and IP addresses, phone numbers, dates of birth and passwords stored as either salted SHA-1, bcrypt or argon2 hashes. When contacted about the incident, SurveyLama advised that they had already "notified the users by email".
Spoutible
January 31, 2024
•[ leak, misconfiguration, technology ]
In January 2024, Spoutible had 207k records scraped from a misconfigured API that inadvertently returned excessive personal information. The data included names, usernames, email and IP addresses, phone numbers (where provided to the platform), genders and bcrypt password hashes. The incident also exposed 2FA secrets and backup codes along with password reset tokens.
OpenAI
January 29, 2024
•[ hack, technology ]
OpenAI officials say that the ChatGPT histories a user reported result from his ChatGPT account being compromised.
Hewlett Packard Enterprise (HPE)
January 23, 2024
•[ hack, espionage, malware ]
Hewlett Packard Enterprise (HPE) discloses that suspected Russian hackers known as Midnight Blizzard gained access to the company's Microsoft Office 365 email environment to steal data from its cybersecurity team and other departments.
Unknown Job Seeking Platform in Thailand
January 22, 2024
•[ leak, technology ]
A threat actor named Milw0rm leaks 61,000 rows of records related to Thai job seekers and includes an extensive range of personal information.
Trello
January 22, 2024
•[ leak, misconfiguration, technology ]
A threat actor with the moniker of 'emo' leaks the private emails of 15,115,516 Trello members, using an exposed Trello API to link private email addresses with Trello accounts, enabling the creation of millions of data profiles containing both public and private information.
Tietoevry
January 20, 2024
•[ ransomware, malware, technology ]
Finnish IT services and enterprise cloud hosting provider Tietoevry suffers an Akira ransomware attack impacting cloud hosting customers in one of its data centers in Sweden.
mpl.live
January 20, 2024
•[ leak, technology ]
The same threat actor roshtosh' leaks data from mpl.live (Mobile Premier League) another gambling platform in India.
Loïc Lawson and Anani Sossou
January 16, 2024
•[ espionage, malware, technology ]
Reporters Without Borders (RSF) announces to have found traces of spyware resembling NSO groups Pegasus surveillance tool on the phones of two journalists in Togo (Loc Lawson and Anani Sossou).
Multiple organizations in Bahrain
January 15, 2024
•[ hack, technology ]
The Anonymous Collective takes down several organizations in Bahrain, including prominent media outlets like Akhbar al-Khaleej, Al-Ayam, Gulf Daily News, and Al-Bilad, in retaliation for the countrys support for the US and UK strikes on Yemen.
Undisclosed U.S: Cloud Service Provider
January 11, 2024
•[ hack, malware, technology ]
A Ukrainian national is arrested for allegedly infecting the servers of a well-known American cloud service provider with a cryptomining malware.
Tigo Business
January 4, 2024
•[ ransomware, malware, technology ]
Tigo Business, the largest mobile carrier in Paraguay, is hit with a Black Hunt ransomware attack.
Telcos, media, internet service providers (ISPs), and Kurdish websites in the Netherlands
January 3, 2024
•[ espionage, technology ]
Researchers from Hunt & Hackett reveal that the Turkish state-backed cyber espionage group tracked as Sea Turtle has been carrying out multiple spying campaigns in the Netherlands, focusing on telcos, media, internet service providers (ISPs), and Kurdish websites.
Orange Spain
January 2, 2024
•[ hack, misconfiguration, technology ]
Orange Spain suffers an internet outage after an attacker with the moniker of 'Snow' breaches the company's RIPE account to misconfigure BGP routing and an RPKI configuration.
