2019 Breaches
The Hacker GnosticPlayers Sells His Hacked Data on Dream Market
Who: 8 Different Companies # of Accounts Breached: 93 Million What was affected: A hacker going by the name of Gnosticplayers has put up for sale a third set of hacked databases on a Dark Web marketplace. The biggest name in today's batch is GfyCat, the famous GIF...
Phishing Email sent to Employee responsible for UConn Health Breach
Who: UConn Health # of Accounts Breached: 326,000 What was affected: An unauthorized third party accessed employee email accounts breaching the privacy of 326,000 patients and others. Of that number, 1,500 could have had their social security numbers exposed, UConn...
Third Party Vendor breach allowed Virus into CHI Health
Who: CHI Health When it happened: February 13-14, 2019 How it happened: A device brought in by a third-party vendor introduced a virus, also known as malware, into the health system’s network. The virus affected some hospitals and clinics within the healthcare system...
Malware infects Computer System of Chester County
Who: Chester County Government’s Computer System # of Records Affected: At this time, there is no evidence that county information has been accessed or compromised When it happened: February 20, 2019 What happened: Malware activity was detected on the county’s...
UnAuthorized Access to Employee Email Accounts at VT Medical Center
Who: Rutland Regional Medical Center # of Records Affected: When it happened: December 29, 2018 What happened: On December 21, 2018, a Rutland Regional employee identified a high volume of spam emails being sent from their email account. How it happened: The...
Hacker lists 127 Million Records for Sale on Dark Web
Who: Hacker Breaches Dozens of Sites # of Records Affected: 127 Million When it happened: February 15, 2019 What happened: A hacker who was selling details of nearly 620 million online accounts stolen from 16 popular websites has now put up a second batch of 127...
Malware Attacks Popular Third-Party Municipal Payment System Compromising Residents Data
Who: CentralSquare Technologies, manufacturer of the click2gov bill-pay management system in 46 North American Municipalities # of Records Affected: 294,929 When it happened: December 20, 2018 What happened: Click2Gov, a software application popular among...
Wendy’s Pays $50 Million to Settle Credit Card Breach Lawsuit
Who: Wendy’s Co. # of Records: Credit Card Data from 1000 Wendy’s locations When it happened: 2015 and 2016 What happened: Criminals installed malware on the restaurants’ point-of-sale systems exposing the credit card information of customers at more than 1,000...
Medical Records found in Crates and Partially burned in Atlanta
Who: Southside Medical Clinic # of Records: Undetermined When it happened: A viewer alerted the local news to an issue in a parking lot across the street from the clinic. The news reporter went to an abandoned building across the street, where he found hundreds of...
Hospital Cardiology Unit Patient Records Encrypted by Ransomware
Who: Cabrini Hospital Cardiology Unit # of Records: 15,000 When it happened: February 20, 2019 What happened: A cybercrime syndicate has hacked and scrambled the medical files of about 15,000 patients from a specialist cardiology unit at Cabrini Hospital and demanded...
Intuit Notifies Turbo Tax Users of Possible Credential Stuffing Data Breach
Who: Intuit, the company behind tax preparation software TurboTax # of Records: Undisclosed When it happened: February 25, 2019 What happened: Unauthorized threat actors accessed user accounts. How it happened: Intuit discovered that an unauthorized party accessed tax...
Student Tax Data Lost in Mail Mishap between Third-Party Vendor and SLCC
Who: Salt Lake City Community College # of Affected: 42,000 What was affected: Documents that deal with the 1098-T tax form used for getting educational tax credits for students was lost during the mailing process. The college uses a third-party vendor and and a...
Large Provider of POS Systems Hit With Credit Card Stealing Malware
Who: North Country Business Products (NCBP) # of Affected: 2% of customer base What was affected: Hackers broke into NCBP information technology network and implanted malware onto POS networks belonging of 139 bars, restaurants and coffeeshops including branches of...
Ransomware Takes Down Cloud SMB Payroll and HR Services Company
Who: Apex Human Capital Management # of Records: What was affected: Ransomware attack this week severed payroll management services for hundreds of the company’s customers for nearly three days. When it happened: February 19, 2019 How it happened: Infected with a...
Third Party Vendor Used by City Water Department Hacked
Who: Pompano Beach Municipal Water Service # of Affected: 4,000 What was affected: Third-Party Hack When it happened: August 30 to December 6, 2018 How it happened: Hackers gained unauthorized access to credit or debit card data stored with software company Central...