Category: The Week in Breach

Categories
The Week in Breach

The Week in Breach: 17/02/21 – 23/02/21

Kia hits a bump in the road with ransomware, Underwriters Laboratories didn’t check their cyber safety, Simon Fraser University is back for a cyberattack encore.
  United States – Automatic Funds Transfer Services (AFTS)  Exploit:  Ransomware
Automatic Funds Transfer Services (AFTS): Payment Processor  >> Read full details on our blog  
  United States – Kia Motors America Exploit: Ransomware
Kia Motors America: Automotive Manufacturer  >> Read full details on our blog  
  United States – Jones Day Exploit: Ransomware
Jones Day: Law Firm  >> Read full details on our blog  
  United States – Sequoia Capital Exploit: Phishing
Sequoia Capital: Venture Capital Firm  >> Read full details on our blog  
  United States – Underwriters Laboratories Exploit: Ransomware
Underwriters Laboratories: Safety Regulator >> Read full details on our blog  
  Canada – Simon Frazer University Exploit: Hacking
Simon Fraser University: Institution of Higher Learning  >> Read full details on our blog  
  The Netherlands – Dutch Research Council (NWO)  Exploit: Malware
Dutch Research Council: Government Entity  >> Read full details on our blog  
  The Netherlands – Réseaux IP Européens Network Coordination Centre (RIPE NCC)  Exploit: Credential Stuffing
Réseaux IP Européens Network Coordination Centre (RIPE NCC): World Regulatory Body    >> Read full details on our blog  
  France – Beneteau SA  Exploit: Malware
Beneteau SA: Maritime Vessel Builder  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 10/02/21 – 16/02/21

 A US municipal water plant breach raises alarm and ransomware impacts hospital care in France.
  United States – Oldsmar Water Treatment Plant Exploit: Credential Compromise
Oldsmar Water Treatment: Municipal Water System Plant   >> Read full details on our blog  
  United States – Syracuse University Exploit: Unauthorized Access to Email
Syracuse University: Institution of Higher Learning  >> Read full details on our blog  
  United States – Chess.com
Exploit: Security Vulnerability
Chess.com: Gaming and Resource Site  >> Read full details on our blog  
  United States – Nebraska Medicine Exploit: Malware
Nebraska Medicine: Health System  >> Read full details on our blog  
  Canada – Canadian Discount Car and Truck Rentals Exploit: Ransomware
Canadian Discount Car and Truck Rentals: Vehicle Rental Company >> Read full details on our blog  
  France – Dax-Cote de Argent Hospital Exploit: Ransomware
Dax-Cote de Argent Hospital: Medical Center  >> Read full details on our blog  
  France – Mutuelle Nationale des Hospitaliers (MNH)  Exploit: Ransomware
Mutuelle Nationale des Hospitaliers (MNH): Insurance Company  >> Read full details on our blog  
  Poland – CD Projekt Red  Exploit: Ransomware
CD Projekt Red: Videogame Developer    >> Read full details on our blog  
  Australia – QIMR Berghofer Medical Research Institute  Exploit: Third Party Breach
QIMR Berghofer Medical Research Institute: Medical Research Facility  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 03/02/21 – 09/02/21

Spotify is in the spotlight with yet another breach, third-party risk backfires on multiple organizations, short and long-term planning for rising remote work risk.
  United States – Spotify Exploit: Credential Stuffing
Spotify: Streaming Music Service  >> Read full details on our blog  
  United States – Washington State Auditor  Exploit: Third Party Data Breach
Washington State Auditor: Regional Government Regulator  >> Read full details on our blog  
  United States – DriveSure Exploit: Hacking
DriveSure: Customer Retention Platform  >> Read full details on our blog  
  United States – WestRock Exploit: Ransomware
WestRock: Packaging Manufacturer  >> Read full details on our blog  
  United States – SN Servicing Company  Exploit: Ransomware
SN Servicing Company: Mortgage Loan Services  >> Read full details on our blog  
  France – StormShield Exploit: Hacking
StormShield: Cybersecurity Firm  >> Read full details on our blog  
  Luxembourg – European Volleyball Confederation Exploit: Unsecured Database
European Volleyball Confederation: Sports League  >> Read full details on our blog  
  Australia – Oxfam Australia Exploit: Hacking
Oxfam Australia: Charitable Organization    >> Read full details on our blog  
  Australia – SitePoint Exploit: Third Party Data Breach
SitePoint: Web Development Education Resources  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 27/01/21 – 02/02/21

Ransomware romps through the UK, US Cellular has a CRM disaster that goes from bad to worse, big takedowns of ransomware gangs match the big surge in ransomware but don’t fix the problem!    

Dark Web ID’s Top Threats This Week
Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Sales & Retail
Top Employee Count: 501+  
  United Kingdom – UK Research and Innovation (UKRI)  Exploit: Ransomware
UKRI: Scientific Research Agency  >> Read full details on our blog  
  United Kingdom – Mensa  Exploit: Password Compromise
Mensa: Intellectual Club >> Read full details on our blog  
  United States – USCellular Exploit: Malware
USCellular: Mobile Phone Company  >> Read full details on our blog  
  United States – DSC Logistics Exploit: Ransomware
DSC Logistics: Shipping and Freight Logistics  >> Read full details on our blog  
  United States – Nissan North America Exploit: Misconfiguration
Nissan North America: Automotive Manufacturer  >> Read full details on our blog  
  Austria – Palfinger Exploit: Ransomware
Palfinger: Crane Manufacturer  >> Read full details on our blog  
  Hong Kong – Dairy Farm Exploit: Ransomware
Dairy Farm: Retail Conglomerate  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 20/01/21 – 26/01/21

ShinyHunters work overtime at multiple targets including Pixlr & data theft puts a star talent agency in the spotlight.

Dark Web ID’s Top Threats This Week
Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Sales & Retail
Top Employee Count: 501+  
  United Kingdom – the7stars Exploit:  Ransomware
the7stars: Talent Agency  >> Read full details on our blog  
  United States – TeeSpring Exploit: Hacking
Teespring: eCommerce Platform  >> Read full details on our blog  
  United States – Circut Court of Cook County Exploit: Unsecured Server
Circuit Court of Cook County: Municipal Court System  >> Read full details on our blog  
  United States – MeetMindful Exploit: Hacking 
MeetMindful: Dating Site >> Read full details on our blog  
  United States – Bonobos Exploit: Hacking
Bonobos: Menswear Retailer  >> Read full details on our blog  
  Canada – City of Montmagne Exploit: Ransomware
City of Montmagne: Municipal Government  >> Read full details on our blog  
  Sweden – Pixlr Exploit: Third Party Data Breach
Pixlr: Photo Editing Software Developer  >> Read full details on our blog  
  Australia – Australia Securities and Investments Commission  Exploit: Hacking
Australia Securities and Investments Commission: Securities Regulator  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 13/01/21 – 19/01/21

Capcom’s breach hits 40K players,

Dark Web ID’s Top Threats This Week
Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Health & Medical Research
Top Employee Count: 501+  
  United Kingdom – Nohow International Exploit: Unsecured Database
Nohow International: Staffing Firm  >> Read full details on our blog  
  Japan – Capcom Co. Ltd  Exploit: Ransomware
Capcom Co. Ltd.: Videogame Developer  >> Read full details on our blog  
  United States – Ubiquiti Networks Exploit: Hacking
Ubiquiti Networks: Communications Technology Firm  >> Read full details on our blog  
  United States – Parler Exploit: Hacking 
Parler: Social Media Application  >> Read full details on our blog  
  United States – Taylor Made Diagnostics Exploit: Ransomware
Taylor Made Diagnostics: Occupational Healthcare Provider  >> Read full details on our blog  
  United States – South Country Health Alliance Exploit: Phishing
South Country Health Alliance: Health Plan Provider  >> Read full details on our blog  
  Canada – Government of Saskatchewan Hunting, Angling & Fishing Licensing (HAL) Exploit: Human Error
Government of Saskatchewan HAL: Regional Regulatory System  >> Read full details on our blog  
  The Netherlands – Eneco  Exploit: Credential Stuffing 
Eneco: Energy Company  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 06/01/21 – 12/01/21

Multiple healthcare targets receive an unwelcome diagnosis of ransomware. 

Dark Web ID’s Top Threats This Week
Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 501+  
  United Kingdom – Amey Plc Exploit: Ransomware
Amey Plc: Infrastructure Builder    >> Read full details on our blog  
  United States – Lake Regional Healthcare Exploit: Ransomware
Lake Regional Healthcare: Hospital System    >> Read full details on our blog  
  United States – OmniTRAX Exploit: Ransomware
OmniTRAX: Short Line Railway  >> Read full details on our blog  
  United States – Apex Laboratories  Exploit: Ransomware
Apex Laboratories: Consumer Medical Testing   >> Read full details on our blog  
  United States – Dassault Falcon Jet Exploit: Ransomware
Dassault Falcon Jet: Aviation Manufacturing  >> Read full details on our blog  
  Canada – Aurora Cannabis Exploit: Unauthorized Access
Aurora Cannabis: Marijuana Dispensary Chain   >> Read full details on our blog  
  Canada – Communauto Exploit: Ransomware
Communauto: Car Sharing Service  >> Read full details on our blog  
  New Zealand – The Reserve Bank of New Zealand Exploit: Third Party Breach
The Reserve Bank of New Zealand: Central Government Bank  >> Read full details on our blog  
  Australia – Health and Community Services Union Tasmania Exploit: Unsecured Database
Health and Community Services Union Tasmania: Regional Health Department  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 30/12/20 – 05/01/21

It may be a new year, but cybercriminals are up to the same old tricks around the world. Old-fashioned hacking nails Kawasaki, T-Mobile and Promutuel.

Dark Web ID’s Top Threats This Week
Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 501+  
  United States – Whirlpool Exploit: Ransomware
Whirlpool: Appliance Manufacturer  >> Read full details on our blog  
  United States – GetSchooled Exploit: Unsecured Database
GetSchooled: Education Non-Profit  >> Read full details on our blog  
  United States – Door Controls USA Exploit: Ransomware
Door Controls USA: Door Parts Distributor >> Read full details on our blog  
  United States – T-Mobile Exploit: Hacking
T-Mobile: Mobile Device Network Provider  >> Read full details on our blog  
  United States – Aetna Exploit: Malicious Insider
Aetna: Insurance Company  >> Read full details on our blog  
  Canada – Promutuel Assurance Exploit: Hacking
Promutuel Assurance: Insurance Company  >> Read full details on our blog  
  Belgium – General Medical Laboratory (AML)  Exploit: Ransomware
General Medical Laboratory (AML): Medical Testing Laboratories  >> Read full details on our blog  
  Germany – Funke Media Group Exploit: Ransomware
Funke Media Group: News Reporting Organization  >> Read full details on our blog  
  India – IndiGo Exploit: Ransomware
IndiGo: Airline  >> Read full details on our blog  
  Japan – Kawasaki Heavy Industries Aerospace Co.  Exploit: Hacking
Kawasaki Heavy Industries Aerospace Co.: Aerospace Technology Manufacturing  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 23/12/20 – 29/12/20

Ransomware was an unwelcome holiday gift for a plastic surgery group, a trucking company, and other organizations!

Dark Web ID’s Top Threats This Week

Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 11 – 50  
  United Kingdom – The Hospital Group Exploit: Ransomware
The Hospital Group: Private Cosmetic Surgery Services >> Read full details on our blog  
  United Kingdom – NOW: Pensions Exploit: Insider Incident (Accidental)
NOW Pensions: Workplace Pension Services  >> Read full details on our blog  
  Scotland – Scottish Environmental Protection Agency  Exploit: Hacking
Scottish Environmental Protection Agency – National Environmental Regulatory Authority  >> Read full details on our blog  
  United States – Forward Air  Exploit: Ransomware
Forward Air: Trucking & Logistics Company  >> Read full details on our blog  
  United States – TennCare Exploit:  Insider Incident (Accidental)
TennCare: Medicaid Services Agency >> Read full details on our blog  
  United States – TaskRabbit Exploit: Credential Stuffing
TaskRabbit: Microlabor Marketplace  >> Read full details on our blog  
  Canada – Sangoma Technologies Exploit: Ransomware
Sangoma Technologies: VoIP Technology Provider  >> Read full details on our blog  
  Spain – 21 Buttons Exploit:  Misconfiguration
21 Buttons: Fashion Social Network  >> Read full details on our blog  
  Japan – Koei Tecmo Exploit: Spear Phishing
Koei Tecmo : Videogame and Anime Studio  >> Read full details on our blog  
Categories
The Week in Breach

The Week in Breach: 16/12/20 – 22/12/20

The fallout of last week’s massive nation-state hacking incident continues for Microsoft, Cisco & more plus yet another Spotify breach, Work From Home culture spawns new risk and the dangers of Dark Web data markets for your businesses.   

Dark Web ID’s Top Threats This Week

Top Source Hits: ID Theft Forum
Top Compromise Type: Domain
Top Industry: Education & Research
Top Employee Count: 11 – 50  
  United States – Microsoft Exploit: Hacking (Nation-State)
Microsoft: Software & Technology Developer  >> Read full details on our blog  
  United States – Cisco Exploit: Hacking (Nation-State)
Cisco: Technology Developer  >> Read full details on our blog  
  United States – Spotify Exploit: Accidental Data Exposure
Spotify: Music Streaming Service  >> Read full details on our blog  
  United States – City of Independence, MO Exploit: Ransomware
City of Independence, MO: Municipal Government  >> Read full details on our blog  
  United States – Sonoma Valley Hospital Exploit: Hacking (Nation-State)
Sonoma Valley Hospital: Medical Center  >> Read full details on our blog  
  United Kingdom – People’s Energy Exploit: Hacking
People’s Energy: Sustainable Energy Utility  >> Read full details on our blog  
  United Kingdom – Probase Exploit: Unsecured Database
Probase: CRM App Developer  >> Read full details on our blog  
  Germany – Symrise Exploit: Ransomware
Symrise: Flavor and Fragrance Producer >> Read full details on our blog  
  India – State of Telangana Exploit: Misconfiguration
State of Telangana: Regional Government  >> Read full details on our blog  
  India – ELCOM Innovations Private Limited Exploit: Malicious Insider
ELCOM Innovations Private Limited: Defense Technology Contractor  >> Read full details on our blog