2019 Breaches
Unsecured Database of Third Party Vendor allows Access to Spanish Gym Franchises
Who: VIVA GYM When: 30 Mar 2019 # of records involved: 6,608 What happened: A passwordless MongoDB database that was exposing sensitive information of VivaGym job candidates and other business related data. How did it happen: At the moment of the discovery, the...
Free Movie Streaming Site Database Accessible to Public
Who: Kanopy When: 22 Mar 2019 # of records involved: 26 to 40 Million Log Lines per day What happened: An unprotected weblog database belonging to a free movie streaming site accessible to the public without authentication of any kind. How did it happen: The...
Employee Snoops through Patient Records at Canadian Regional Hospital
Who: Nanaimo Regional General Hospital When: 26 Mar 2019 # of records involved: 485 Medical Files What happened: A employee has been linked to a privacy breach at Nanaimo Regional General HospitalHow did it happen: Unusual activity was detected by Island Health’s...
Successful Highly Sophisticated Phishing Attack Hit California School District
Who: Carmel Unified School District When:15 Mar 2019 # of records involved: Several hundred employees What happened: Unauthorized access to some email accounts within the district. How did it happen: A successful highly sophisticated phishing attack and difficult to...
Data Breach against AZ Medicaid Agency
Who: Arizona Health Care Cost Containment System When: 11 Mar 2019 # of records involved: 3,100 individuals What happened: Thousands of Arizonans were affected by a data breach earlier this year that targeted the state’s Medicaid agency. How did it happen: An internal...
MongoDB database Leaks Business Intelligence Data
Who: Verifications.io Website When: 7 Mar 2019 # of records involved: 809 million records What happened: Security researchers Bob Diachenko and Vinny Troia discovered an unprotected, publicly accessible MongoDB database containing 150 gigabytes of detailed, plaintext...
Ransomware Attacks Taos Public Schools
Who: Taos schools When: 21 Mar 2019 # of records involved: undetermined What happened: A ransomware attack that knocked out the district's digital services How did it happen: Taos Schools suffered a cyber attack, with hackers demanding $5,000 in cash as ransom for the...
Ransomware encrypts 50,000 Patient Records at Delaware Guidance Service Center
Who: Delaware Guidance Services for Children and Youth When: 13 Mar 2019 # of records involved: 50,000 What happened: Ransomware attack on Delaware Guidance Services for Children and Youth How did it happen: The types of data in the files that were encrypted by the...
Widespread Computer Virus Shuts Lynn MA Public School Networks
Who: Lynn Public Schools When: 21 Mar 2019 # of records involved: undetermined What happened: A widespread computer virus has shut down the internet in the Lynn Public School System in Massachusetts. How did it happen: The administration currently has no idea where or...
New and Rarely Seen Ransomware Hampers Norsk Hydro Aluminum Production
Who: Norsk Hydro When: 19 Mar 2019 # of records involved: undetermined What happened: One of the latest examples of the damage hackers can cause to business and industry occurred at Norsk Hydro one of the world’s largest aluminum producers who fell victim to a cyber...
Sister of Ex-Girlfriend targeted in Sex-Tortion Plot
Who: Suspect's ex-girlfriend Sister was Victim When: 14 Mar 2019 # of records involved: What happened: A computer hacker was paid to target a University of Central Florida student's Snapchat account and extort her for nude photos. How did it happen: John Thompson paid...
Third Party Vendor Responsible for Online Availability of Singapore Blood Donor Database
Who: Secur Solutions Group /HSA/Singapore National Blood Bank When: 13 March 2019 # of records involved: 800,000 Blood Donors What happened: The personal information of more than 800,000 people who have donated or registered to donate blood in Singapore since 1986 was...
Maritime Research at Universities Under Attack by Chinese Hackers
Who: 27 Universities WorldWide When: 5 March 2019 # of records involved: Targeted 27 Universities World Wide What happened: Chinese hackers looking to steal maritime military technology and secrets. How did it happen: The cyber attacks were conducted via phishing...
Unauthorized Access to Employee Email at Dental Insurance Company Responsible for PHI Breach
Who: Superior Dental Care (SDC) When: Reported 26 March 2019 # of records involved: 38,260 patients What happened: Hack involving an employee’s email account that held protected health information How did it happen: Superior Dental Care, an Ohio dental insurance...
Hackers target Chinese State targeted Using Ransomware
Who: Chinese State When: 11 March 2019 # of records involved: What happened: The National Network and Information Security Information Center has identified overseas hackers targeting the websites of government departments with emails containing ransomware. How did it...