ThreatWatch is a snapshot of the data breaches hitting organizations and individuals, globally, on a daily basis.
The information is based on accounts published by outside news organizations and researchers.
We have tried to provide you with a sample of the most prevalent and interesting cyber events. Each incident chronicled includes the suspected attackers' methods of penetration and apparent target to help highlight patterns of activity and emerging threats. The records are limited to episodes where data actually was compromised. These are not accounts of new viruses, spam, or malicious email campaigns that might lead to breaches.
Some of the events cited are more damaging than portrayed, while others may later turn out not to be hacks at all: as you’ll see, the number of people affected is one of the hardest measures to track.
About the map: The global map visualizes real-time malicious activity data captured by sensors used by the experimental Honeynet Project, an international non-profit security research organization dedicated to investigating the latest attacks and developing open source tools to improve Internet security. The green dots indicate the geographic locations of outgoing malicious activity. The map represents only some of the activity detected at any given time because not all of the project's sensors push their data.Collapse
Network intrusion; User accounts compromised
Attackers Breached Systems Serving 8 Harvard Colleges and Offices
Education // Massachusetts, United States
About half a month after discovering the intrusion, school officials are warning computer users that their university passwords might have ...
Insider attack; Unauthorized use of user privileges; Unauthorized use of employer’s data
California Employee Faces Charges over College Hack and Drug Possession
Education // California, United States
Lacey Fowler, a human resources analyst at Cuesta College, allegedly sent sensitive data on school staff to a personal email account ...
Cyber espionage; Insider attack; Network intrusion; Unauthorized use of user privileges; Unauthorized use of employer’s data
Contractors Hacked Other Contractors and Agencies for Financial Gain
Government (U.S.) // Technology // United States
Twins Muneeb and Sohaib Akhter, 23, admitted breaking into a slate of systems, including State Department networks, while working as ...
Canadian Health Authority ‘Tearing’ Offices Apart For Missing Thumb Drive and Assigning 30 Workers for Notification
Healthcare and Public Health // Canada
A USB flash drive containing a spreadsheet of employees' personal information has gone missing at Eastern Health. The USB drive was last ...
Credential-stealing malware; Cyber espionage; Network intrusion; Social engineering
WikiLeaks Saudi Cable Release Resembles the Work of Iranian Hackers
Government (Foreign) // Saudi Arabia
It seems Iranian hackers were responsible for stealing the 70,000 Saudi Arabia Foreign Ministry documents that recently popped up on the ...
Data dump; Unauthorized use of system administrator privileges; Software vulnerability
Hackers Leak Canadian Officials’ Creds to Protest Surveillance Legislation
Government (Foreign) // Transportation // Canada
A group acting in the name of Anonymous claim to have published personal details that were maintained in an insecure Intelligent ...
Data dump; Network intrusion; Stolen credentials; Unauthorized use of system administrator privileges; User accounts compromised; Software vulnerability
Hacker Extracts Data on Purveyors of Controlled Substances
Healthcare and Public Health
Akorn Inc., a niche pharmaceutical company, had a customer database compromised by an attacker who now is offering to sell the records to ...
Insider attack; Stolen credentials; Unauthorized use of user privileges; Unauthorized use of employer’s data; User accounts compromised
Former NY Hospital Employee Charged with Exposing Data on 12,500 Patients
Healthcare and Public Health // New York, United States
The Montefiore Health System was unaware of the breach until May 15, when law enforcement authorities informed the hospital about a ...
Unauthorized use of system administrator privileges; Man-in-the-middle attack; Software vulnerability
Microsoft Corp. Site Promoting Anti-Surveillance Policies Has Been Compromised
Technology // Web Services
Malicious advertisers, not spies, seem to be responsible for embedding links to casino-related webpages on the website. The site, “Digital ...
Network intrusion; Stolen credentials; Unauthorized use of system administrator privileges
LastPass Password Locker Has Been Compromised – But Don’t Freak Out
The online password manager stores all of a person’s passwords in one location, creating a single point of failure. However, with this ...