List of data breaches and cyber attacks in March 2021 – 21 million records breached

You can find April 2021’s list of data breaches and cyber attacks here.

---

Don’t be fooled by the fact that we only recorded 20,995,371 breached records in March; it was one of the leakiest months we’ve ever seen, with 151 recorded incidents.

By comparison, there was a seemingly Lilliputian 82 recorded breaches in January and 118 in February.

The issue is that in far more cases than we’d expect, the number of breached records wasn’t included in the notification, so we can’t include it here.

We typically expect ambiguity when it comes to ransomware, because organisations are locked out of their files and can’t calculate what’s been affected. But there were dozens of other cyber attacks and data breaches where the organisation either didn’t know or reveal the extent of the damage.

You can find our full list of incidents below, with those affecting UK organisations listed in bold.

Meanwhile, you can stay up to date with the latest news by subscribing to our Weekly Round-up or visiting our blog.

---

---

Cyber attacks

• Hackers obtain sensitive data on UK aid projects overseas (unknown)
• University of the Highlands and Islands working to recover from cyber attack (unknown)
• Pupils’ data destroyed after attack on Redborne Upper School and Community College (unknown)
• Chinese hackers target Indian vaccine makers SII, Bharat Biotech (unknown)
• City of Kingman, AZ, hit by cyber attack (unknown)
• Italian manufacturer Caffitaly impacted by attack on a supplier (unknown)
• Malaysia Airlines tells its frequent flyer members that their data may have been compromised (unknown)
• Social network platform Gab hacked after rookie coding error (15,000)
• Cyber attack affecting Hanover Area School District (unknown)
• Security breach prompts lockdown of some Manitoba student databases (20,000)
• PA-based Millersville University confirms external cyber attack (unknown)
• Elite cyber crime forum “Maza” breached (unknown)
• Texas-based ProPath notifies patients of employee email breach (unknown)
• Elara Caring notifies patients after corporate email accounts hacked (100,487)
• St. Agnes Medical Center patient data compromised in email breach at St. Alphonsus (unknown)
• American Armed Forces Mutual Aid Association hacked (161,621)
• Website of the attorney representing one of NY Gov. Andrew Cuomo’s accusers hacked (unknown)
• Czech officials in Prague ‘hit by massive cyber attack’ (unknown)
• Brazil’s CPTrans website and the Educa em Casa platform hacked (unknown)
• Houston-area school district investigates troubling messages sent during breach (unknown)
• Hackers breach security cameras from start-up Verkada (150,000)
• Two charged for copying and deleting data from an unnamed New York company (unknown)
• PEI-Genesis says employee email account was compromised (unknown)
• New Jersey employment portal hit by cyber criminals (200)
• Treasure Valley residents receiving letters from Saint Alphonsus saying they are dead (unknown)
• Unauthorised access occurred in Japanese retailer Urban Research (317,326)
• Walmart discloses unauthorised access (unknown)
• Norway’s parliament hit by new hack attack (unknown)
• Fastway Couriers notifies Irish Data Protection Commission of a hack (446,143)
• Overseas Service Corporation caught out by phishing scam (unknown)
• The city administration of Ebeleben hit by cyber criminals (unknown)
• Florida law firm Sachs Sax Caplan notifies individuals of email hack (unknown)
• The Canada Revenue Agency locks accounts amid suspected phishing attack (80,000)
• South African insurance firm PPS hit by cyber attack (unknown)
• EDAG Engineering Group AG affected by cyber attack (unknown)
• Michigan’s Troy School District website down after hacking from outside US (unknown)
• The Coleman Group of Companies caught cyber criminals in the act (unknown)
• Hackers broke into the system of three Prague polyclinics (unknown)
• Nikkei’s Hong Kong affiliate hit by unauthorized access (unknown)
• Eastern Health cyber ‘incident’ cancels some surgeries across Melbourne (unknown)
• New Zealand’s Lumino dental firm suffers email hack (unknown)
• Police are investigating a cyber attack on paint manufacturer Remmers (unknown)
• Washington state’s Douglas County targeted in cyber attack (unknown)
• Brazil’s Celg Geração e Transmissão suffers cyber attack (unknown)
• Mendelson Kornblum Orthopedic and Spine Specialists notifies patients of breach (28,658)
• Eyemart Express notifies patients of breach (unknown)
• Maricopa County Community College District cancels classes after attack (unknown)
• Kentucky Wesleyan College notice of data security incident (31,796)
• Missouri’s Park Hill schools closed Monday due to malware attack (unknown)
• MangaDex website taken offline following cyber attack (unknown)
• DeCotiis, FitzPatrick, Cole & Giblin says employee email was hacked (unknown)
• Texas’s Sewell Family of Companies discloses breach (unknown)
• Czech Republic’s railway administration attacked by hackers (unknown)
• Threat actors leak files with protected health information from U. Miami (unknown)
• Heart of Texas Community Health Center notifies some patients of email-related breach (unknown)
• Solairus Aviation notice regarding Avianis data security incident (unknown)
• Polk County School District reveals third-party breach from 2019 (unknown)
• Haven Behavioral Hospital provides notice of data incident (unknown)
• Mott Community College, Michigan, reports cyber attack (unknown)
• Cyber security insurance firm CAN systems offline amid ongoing attack (unknown)
• Dutch car company RDC.nl hit by cyber criminals (7.3 million)
• Artificial snow manufacturer MND suffers malware attack (unknown)
• Guns.com hacked, spilling gun owner info over the dark web (unknown)
• Jefit data incident public announcement (unknown)
• Lexington Medical Center discloses vendor’s patient records data breach (unknown)
• Online food delivery chain Yemeksepeti hit by cyber attack (unknown)
• Channel Nine cyber attack disrupts live broadcasts in Australia (unknown)
• Singaporean retailer Vhive alerts consumers to cyber attack (300,000)

Ransomware

• Fifteen schools in Nottinghamshire crippled by cyber attack (unknown)
• South and City College Birmingham closed for a week after ransomware attack (unknown)
• South Gloucestershire schools hit by ransomware attack (unknown)
• MBA Group held to ransom by cyber attackers (unknown)
• Dutch e-Ticketing platform Ticketcounter has suffered a security incident (1.9 million)
• Lot-et-Garonne firefighters victims of a cyber attack (unknown)
• Israeli car financing company KLS Capital hacked (unknown)
• Tri County Sheriff Dispatch hit with ransomware attack (unknown)
• Hackers hit Indians with ransomware supporting farmers (unknown)
• Crypto firm Tether says it won’t pay $24 million ransom (unknown)
• The Accellion breach also impacted Qualys; threat actors start dumping files (unknown)
• Southern Illinois University School of Medicine impacted by Accellion breach (unknown)
• Payroll giant PrismHR outage likely caused by ransomware attack (unknown)
• Atlanta Allergy & Asthma hit by Nefilim threat actors (unknown)
• Navajo Nation hospital targeted by large-scale ransomware hack (unknown)
• AllyAlign notifies members and providers of ransomware attack (76,348)
• Woodcreek Provider Services notifies patients of ransomware incident (210,000)
• Spirit Airlines hit by Nefilim ransomware (unknown)
• Arizona Complete Health notifies plan members of Accellion breach (27,390)
• Sandhills Medical Foundation notifies patients of vendor breach (39,602)
• Texas Medicaid subcontractor dumped after data breach in ransomware attack (unknown)
• Japanese consulting firm hit with ransomware (350)
• Arillium Community Health Plan in Oregon affected by Acceliion breach (unknown)
• Nova Scotia health-care workers may have been compromised by Accellion breach (50,000)
• French hospital Centre Hospitalier Général d’Oloron falls victim to ransomware (unknown)
• Spain’s public employment system was attacked by ransomware (unknown)
• Transport NSW documents posted on dark web after Accellion hack (unknown)
• Flagstar Bank loses customers’ social security numbers after Accellion attack (unknown)
• Outage at Molson Coors suggests ransomware attack (unknown)
• City of Covington, Louisiana hit by ransomware (unknown)
• Preferred Home Care of New York notifies those affected by ransomware attack (92,283)
• Buffalo Public Schools hit by ransomware (unknown)
• Total Life Healthcare data breached in ransomware attack (50,000)
• Newberry County Memorial Hospital experienced ransomware attack (unknown)
• The Metropolitan Area of ​​Barcelona hit by ransomware (unknown)
• Pimpri-Chinchwad Municipal Corporation Smart City suffers ransomware attack (unknown)
• Tech manufacturer Acer hit by ransomware (unknown)
• Stratus Technologies hit suffers ransomware attack (unknown)
• Canada’s Sierra Wireless announces ransomware attack (unknown)
• City of Frankfort, Kentucky, held to ransom (unknown)
• Military supplier PDI Group hit by ransomware (unknown)
• Alton, IL, hit by suspected ransomware attack (unknown)
• Personal Touch Holding Corp. hit by ransomware attack at MSP (750,000)
• Broward County Public Schools suffers ransomware attack (unknown)
• Hackers demand ransom from Town of Didsbury in cyber attack (unknown)
• Hackers hit Harris Foundation in latest ‘highly sophisticated’ cyber attack (unknown)
• Gene therapy firm YposKesi targeted by ransomware (unknown)
• Ransomware gang is threatening to release data stolen from shipping firm ECU Worldwide (unknown)

Data breaches

• Solicitor caught dumping client files in the street (unknown)
• Ministry of Defence secrets exposed by people sending files to personal email accounts (unknown)
• Details of ‘vulnerable kids’ uploaded to Birmingham City Council website in ‘serious’ data breach (unknown)
• Intelligence company Polecat left 30TB server exposed (unknown)
• Health and Welfare Department of West Bengal leaks COVID-19 data (8 million)
• Singapore Airlines customers leaked in SITA security breach (580,000)
• Right-wing militants furious after data leak exposes their involvement in paramilitary group (unknown)
• Data leak at Dutch foreign credential assessment service (18,000)
• A bug in a popular iPhone app exposed thousands of call recordings (130,000)
• Personal information Premier Diagnostics customers exposed on unsecured server (50,000)
• Victoria privacy breach of vulnerable youth data (unknown)
• SEO-Küche left employee and customer data exposed online (5,600)
• Emails of Walworth Co. COVID vaccination registrants accidentally shared (900)
• West Coast health board in privacy blunder involving medical information (unknown)
• Line app allowed Chinese firm to access personal user data (unknown)
• New Zealand IRD sent details of baby to complete stranger and paid her $240 (1)
• Apperta Foundation employee censured after disclosing vulnerability (unknown)
• New Zealand’s Canterbury District Health Board apologizes for software privacy breach (716)

---

Financial information

• Midlands News Association exposed journalists’ personal data (unknown)
• Fatface says customers’ card details were hacked, asked them to keep it secret (unknown)
• Hollywood’s elite private schools hacked (unknown)
• Delco School District says hackers stole millions of dollars (unknown)
• Security Industry Specialists notifies those affected by malware attack (36,762)
• WeLeakInfo leaked customer payment info (24,000)
• Florida’s Leon County Schools website hacked during spring break (unknown)

---

Malicious insiders and miscellaneous incidents

• IT technician jailed after installing software onto work computers to spy on colleagues (unknown)
• Petersburg Medical Center reports malicious insider use (200)
• Snooping employee showed interest in pregnant women’s medical records (unknown)
• UPMC St. Margaret patients’ info shared with unauthorized organisation (unknown)
• Spectrum Health post sensitive info in background of social media posts (unknown)
• Atascadero State Hospital discloses insider misuse (2,032)

---

In other news…

• Told your organisation is leaking data? Here’s how not to respond
• Apple sues former MacBook product design employee for allegedly leaking to the press
• A hacker got all my texts for $16
• Booking.com hit with €475K penalty for failing to report a breach within 72 hours

---

Will you be next?

No one thinks their organisation will fall victim to a security incident until it happens to them – but as we’ve demonstrated here, data breaches are so prevalent that everyone must have a plan.

If you find yourself staring down disaster, IT Governance is here to help. Our Cyber Incident Response service provides the help you need to deal with the threat, as our experts guide you through the recovery process.

They’ll review the breach, mitigate the damage and ensure that you are up and running again as soon as possible.