List of data breaches and cyber attacks in September – 174 million records leaked

The cyber security news has been dominated by just one story all month: Equifax, which suffered one of the largest reported corporate data breaches in history.

But, as always, there were plenty of other data breaches and cyber attacks. Many of them go unreported, and even those that are reported tend to be swept under the carpet – until they make this list, that is.

By my count, there have been 174,429,805 known leaked records this month. Let me know if I have missed any.

Cyber attack & ransomware

Arkansas Oral & Facial Surgery Center notifies 128,000 patients of ransomware incident

UISD investigating computer hacking

Sheriffs warn of hackers after upstate attack

Meridian Secondary School’s art competition site hacked

MongoDB ransacking starts again: Hackers ransom 26,000 unsecured instances

Mystery surrounds malware attack that forced German state parliament offline

Princess ransomware makes a visit to the wrong website a royal mistake

CCleaner, distributed by anti-virus firm Avast, contained malicious backdoor

Data breach

Credit reporting firm Equifax says data breach could potentially affect 143 million US consumers

Huge potential privacy breach exposes Nunavut’s lax file management

The Irish National Teacher’s Organisation suffers breach affecting up to 30,000 teachers

Personal data and lab results of more than 6,000 people were exposed online for months

Deloitte hit by cyber-attack revealing clients’ secret emails

Woman Stole Elderly Identities To Fund ‘Brazilian Butt Lift’; Cops Say

Telstra glitch sends personal SMS messages to random recipients after fire at exchange

SMART Physical Therapy hacked by TheDarkOverlord

Passwords to Over a Half Million Car Tracking Devices Leaked Online

Medical Mutual Provides Notice of Data Incident

Data breach made public, Ridgeview says it exposed some email addresses

PeaceHealth employee accessed patient info unnecessarily

AU Medical Center patients data possibly compromised by attack on faculty email accounts

Morehead Memorial Hospital: Data breach may have leaked patient and employee information

Vevo Hackers Leak — Then Delete — Huge Trove of Internal Videos, Documents

Somerville House donors warned of data breach

Hacker steals thousands of student records from WA TAFE

Man stole records from doctors’ storage unit

Notice of Canoe.ca data breach affecting 1 million site users

AIB loses 550 bank customers’ confidential information

Translate.com Exposes Highly Sensitive Information in Massive Privacy Breach

Port Phillip Council privacy breach exposes 700 email addresses

AXA data breach affects 5,400 Singapore customers

Community Memorial Health System in Ventura suffers data security breach

Taringa hacked: 28 million users’ credentials compromised

Customer data stolen after attack on jobs platform cpjobs.com

Thousands of sensitive mercenary resumes exposed after security lapse

BroadSoft Inc. left millions of partners’ customer data records exposed

Financial information

Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards

Leak puts Toowoomba residents at risk of identity fraud

Dutch Bitcoin Broker Litebit Suffers Second Data Breach in Six Weeks

Financial records, kids names, charity money stolen

MacEwan University defrauded of nearly $12M in phishing scam

Other

7% of All Amazon S3 Servers Are Exposed, Explaining Recent Surge of Data Leaks

Adobe’s security team reveals its private PGP key

Red Alert 2.0: New Android banking trojan can block and log incoming calls from bank

Fighting back against cyber crime

UP STF busts gang which hacked secure source code to crack Aadhaar, issued fake biometric cards

Roman Seleznev pleads guilty to federal charges in Georgia and Nevada

Former Columbia Sportswear Company employee pleads guilty to hacking network

Man involved with “Crackas With Attitude” sentenced to 5 years

Police Seize Domain of Online Store That Stole User’s Card Data