It has been another month of comparatively few reported cyber attacks and data breaches, with our August list containing 84 incidents accounting for 60,865,828 breached records.
And it would have been even fewer if not for the attack on T-Mobile. The mobile network disclosed a hack earlier this month, which it originally said affected 7.8 million customers and 40 million records. However, a week later it bumped up that figure to 53 million.
You can that incident, along with our full list of cyber attacks and data breaches, below – with those affecting UK organisations listed in bold.
And don’t forget to subscribe to our Weekly Round-up to receive the latest industry news and advice.
Contents
Cyber attacks
- Travel and medical insurance provider guard.me suffers security incident (unknown)
- Paxton Media Group says cyber attacker infiltrated its databases (unknown)
- North Dakota’s Sanford Health target of attempted cyber attack (unknown)
- Ibex provides notice of malware attack (unknown)
- Vision for Hope notification of data security incident (unknown)
- Chanel Korea issues apology over data theft (unknown)
- OT Group, the holding company of OrangeTee & Tie and OrangeTee Advisory, has suffered a data security breach (unknown)
- Cyber attack hits vaccine records for thousands of Durham Region children (200)
- T-Mobile data breach exposes millions of customers’ personal data (53 million)
- The Research Foundation for the State University of New York discloses data breach (46,734)
- Destination Maternity notifying employees of hacking incident (93,776)
- Attack on HVAC vendor gave threat actor access to Boston Children’s Hospital (unknown)
- Gelre hospital has been attacked by cyber criminals for three weeks (unknown)
- The Indiana Department of Health confirms leak of COVID-19 data (750,000)
- Secret terrorist watchlist with exposed online (1.9 million)
- Indra hacking group blamed for attack on Iranian railway system (unknown)
- Willdan Group, Inc. provides notice of data privacy incident (unknown)
- Singapore real estate firm breached by ALTDOS (unknown)
- US State Department recently hit by a cyber attack (unknown)
- Phishing attack exposes medical information for patients at Revere Health (12,000)
- Kingman, Arizona residents affected by city’s cyber attack (200)
- Man impersonated Apple customer support to steal iCloud photos in plot to find images of nude women (620,000)
- Hackers release data trove from Belarus in bid to overthrow Lukashenko regime (unknown)
- Educational institution ROC Mondriaan in The Hague victim of major cyber attack (unknown)
- Boston Public Library discloses cyber attack, system-wide technical outage (unknown)
- CareATC notifies patients, employees, and dependents after discovering employee email accounts compromised (unknown)
- DuPage Medical Group notifying patients affected by cyber attack (600,000)
If you find yourself facing a cyber security disaster, IT Governance is here to help. Our Cyber Incident Response service provides the help you need to deal with the threat, as our experts guide you through the recovery process.
They’ll review the breach, mitigate the damage and ensure that you are up and running again as soon as possible.
Ransomware
- Isle of Wight schools hit by ransomware (unknown)
- Lazio region suspends vaccination reservations after ransomware attack (unknown)
- Coghlin Electrical Co. hit with ransomware attack (unknown)
- Ransomware attack prompts Eskenazi Health to shut down systems and divert patients (unknown)
- Ransomware shuts down online services in Joplin, Missouri (unknown)
- Judson ISD says it paid hackers to protect sensitive information (unknown)
- Taiwanese computer hardware vendor GIGABYTE has suffered a ransomware attack (unknown)
- IT health services firm Greenway Health launches investigation into ransomware incident (unknown)
- Crytek confirms Egregor ransomware attack, customer data theft (unknown)
- Missouri’s Affton School District confirms ransomware attack (unknown)
- Montana’s Gering Public Schools suffers ransomware attack (unknown)
- Ransomware hackers leak data of consultancy giant Accenture (unknown)
- Criminal hackers hit two public wastewater plants in Maine (unknown)
- Ohio’s Memorial Health System experiences ransomware attack (200,000)
- Brazil’s National Treasury hit by ransomware (unknown)
- Rockwood School District provides notice of ransomware incident (77,294)
- Search and Rescue Base at Aoraki/Mount Cook hit by ransomware (unknown)
- Renner Stores goes down after ransomware infection (unknown)
- Tokio Marine Insurance Singapore hit by ransomware attack (unknown)
- Ransomware attack on eye clinic in Singapore (73,500)
- Sault Ste. Marie Police Service victim of ransomware attack (unknown)
- Bangkok Air confirms passenger PII leak after ransomware attack (unknown)
- Swiss town of Rolle suffers ransomware attack (unknown)
- Cyber attack targeted Israel’s Bar Ilan University (unknown)
Data breaches
- Washington Hospital hires investigator after electrical fires down internet, phones, medical records database (unknown)
- University of Kentucky data breach exposes email addresses of students and teachers (355,000)
- Singaporean telco StarHub says customer data has been breached (57,191)
- New York City public school students exposed in data leak (3,100)
- Charlotte-Mecklenburg Schools email gaffe exposes medical info on students (3,000)
- Medical records found in a Letterkenny pub (unknown)
- Man arrested after downloading London property firm’s meeting minutes from Google search (unknown)
- New Zealand residents’ private email addresses exposed after mistake by a Work and Income caseworker (103)
- American marketing firm Reindeer breaches data in misconfiguration error (3 million)
- Brooklyn Tech students uncovered a NYC schools data breach (unknown)
- North Carolina state employees notified of unintended exposure of file on intranet (84,860)
- Data breach at US waste management firm exposes employees’ healthcare details (unknown)
- Terabytes of Dallas Police Department data are missing and may be unrecoverable after being deleted during a data migration process (unknown)
- Ford bug exposed customer and employee records from internal systems (unknown)
- JP Morgan Chase Bank admits leaking sensitive data of its customers (unknown)
- Chico State University exposed the personal information of students who requested COVID-19 vaccination religious exemptions (130)
- Fresno Unified School District notifying people after discovering backup device with names and SSNs was missing (unknown)
- Metro Infectious Disease Consultants notifies those affected by privacy incident (171,740)
- Less than two months after its launch and inaugural hack, GETTR is leaking data (unknown)
- Denton County data breach related to Microsoft Power Apps (unknown)
- Los Angeles-based COVID-19 testing supplier Total Testing Solutions exposes medical data (unknown)
Financial information
- Hackers still $600m from Chinese cryptocurrency firm Poly Network (unknown)
- Japanese Exchange Liquid Global suffers cyber attack (unknown)
- Cream Finance loses $25 million in another security breach (unknown)
Malicious insiders and miscellaneous incidents
- Former police officer convicted of selling confidential information on the dark web (unknown)
- Long Island Jewish Forest Hills notifies patients affected by former employee’s unauthorized access to sensitive medical data (unknown)
- Ex-West Penn Hospital technician jailed for secretly recording undressed patients (unknown)
- Florida woman convicted of damaging her former employer’s computers after she was fired (17,000)
- South Florida Community Care Plan notifies members after discovering unauthorised disclosure (unknown)
- Data leak at Radboudumc hospital was caused by former employee (unknown)
- Ex-employee, staff booked for data theft from Ghaziabad firm (unknown)
In other news…
- Wawa customers win initial settlement approval in data breach lawsuit
- Waikato DHB wins injunction to stop Radio NZ using hacked data
No Responses