2017 Master Table
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

View only
 
 
ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
IDDateAuthorTargetDescriptionAttackTarget ClassAttack ClassCountryLinkTags
2
101/01/2017>1Several Institutions in the British GovernmentThe British National Cyber Security Centre reveals to have foiled 86 attacks in its first month of activity most of which are suspected to have come from China, North Korea, Russia, Iran and criminal gangs. Top targets include the Bank of England , the Ministry of Defence , nuclear bases, security services and infrastructure such as transport, the NHS and power systems.>1O Public administration and defence, compulsory social securityCEGBhttp://www.mirror.co.uk/news/uk-news/brit-cyber-warriors-fight-two-9548368Great Britain, China, North Korea, Russia, Iran, Bank of England, Ministry of Defence, NHS
3
201/01/2017?Transmission and electricity producing linesSources from the Energy Ministry claim that a major cyber-attack is the source of the widespread electricity cuts across Istanbul. Turkey sources blame the US for the AttackUnknownD Electricity gas steam and air conditioning supplyCW?TRhttp://www.hurriyetdailynews.com/major-cyber-attack-on-turkish-energy-ministry-reported.aspx?pageID=238&nID=107981&NewsCatID=348Turkey
4
301/01/2017CyberZeistfbi.govExploiting a vulnerability of Plone CMS, CyberZeist claim to have hacked fbi.gov and leaks the records of 155 FBI officials on pastebin. Plone denies that a 0-day vulnerability has been exploited to carry on the attack.Plone CMS vulnerabilityO Public administration and defence, compulsory social securityCCUShttp://securityaffairs.co/wordpress/55042/data-breach/fbi-hacked.htmlCyberZeist, fbi.gov
5
401/01/2017?Susan M. Hughes Center (hughescenter.net)The Susan M. Hughes Center notifies a ransomware incident affecting 11,400 patients.MalwareQ Human health and social work activitiesCCUShttps://www.databreaches.net/cosmetic-surgery-center-discloses-ransomware-attack/Susan M. Hughes Center, hughescenter.net
6
503/01/2017Anonymoushumanrightscommission.vic.gov.auA group claiming to be part of the Anonymous collective defaces Victoria’s Human Rights Commission website (humanrightscommission.vic.gov.au) with a nonsensical message about its social network AnonPlus.DefacementO Public administration and defence, compulsory social securityHGBhttps://www.theguardian.com/technology/2017/jan/03/anonymous-hackers-take-over-victorias-human-rights-commission-websitehumanrightscommission.vic.gov.au, Anonymous
7
604/01/2017?India National Defence Academy (NDA) and National Investigation Agency (NIA)Indian security forces have been alerted by central intelligence agencies that a WhatsApp virus is threatening to hack into their personal information and banking data.MalwareO Public administration and defence, compulsory social securityCEINhttp://mashable.com/2017/01/04/india-security-forces-whatsapp-virus-alert/#qc.ulsMXCPq9NDA, NIA, Whatsapp
8
704/01/2017Kuroi’SHgoogle.com.brKuroi’SH hjacks the DNS record of google.com.br and redirects the users to a defaced page. The hacks happens compromising the records held by registro.br.DNS HijackingJ Information and communicationCCBRhttps://www.techworm.net/2017/01/google-brazil-hacked.htmlKuroi’SH, google.com.br, registro.br
9
804/01/2017?Emory Brain Health CenterEmory Healthcare is one of the victims of the MongoDB ransomware attacks and has its database, managed by a third-party and containing 90,000 records encrypted.MalwareQ Human health and social work activitiesCCUShttps://www.databreaches.net/emory-healthcare-patient-data-hijacked-and-held-for-ransom/Emory Brain Health Center MongoDB, Ransomware
10
904/01/2017?Northside Independent School DistrictThe Northside Independent School District sends letters to about 23,000 former and current students and employees regarding a security breach that might have put their personal information at risk after several employees' email accounts have been compromised.Account HijackingP EducationCCUShttps://www.databreaches.net/tx-letter-notifies-23000-nisd-employees-students-of-email-breach/Northside Independent School District
11
1005/01/2017DragonOK APTSeveral Entities in JapanPalo Alto reveals the details of DragonOK APT, an operation carried on by a Chinese malicious actor targeting primarily Japan, and other regions such as Taiwan, Tibet, and RussiaTargeted AttackY Multiple targetsCE>1http://securityaffairs.co/wordpress/55113/apt/china-linked-dragonok.htmlDragonOK APT, Palo Alto Networks
12
1105/01/2017OilRig APTSeveral entities in IsraelClearSky Security discovers a new campaign conducted by the Iranian OilRig APT leveraging digitally signed malware and fake University of Oxford domains. The campaign targets at least five Israeli IT vendors, several financial institutes, and the Israeli Post Office.Targeted AttackY Multiple targetsCEILhttp://securityaffairs.co/wordpress/55145/apt/oilrig-apt-itan.htmlOilRig APT, ClearSky Security, Iran, Oxford
13
1205/01/2017?University of AlbertaThe Universtity of Alberta discloses the details of a malware attack, occurred late last year, involving 300 computers and putting over 3,000 students at risk.MalwareP EducationCCCAhttps://www.databreaches.net/ca-thousands-of-university-of-alberta-students-faculty-put-at-risk-in-malware-security-breach/University of Alberta
14
1306/01/2017CyberwolfgangSquare Enix's European Twitter Account (@SQUARE_ENIX_EU)Video game giant Square Enix's European Twitter account is hacked by a group of hackers calling themselves the "cyberwolfgang" and posts multiple tweets mocking other companies including rival gaming company EA, media outlet TechCrunch .Account HijackingR Arts entertainment and recreationCCJPhttp://www.ibtimes.co.uk/square-enix-europes-twitter-account-hacked-fires-nasty-insults-ea-fifa-1599832Square Enix, @SQUARE_ENIX_EU, Twitter, EA
15
1406/01/2017?Arizona Department of AdministrationArizona officials investigate how and when several computers used by state legislators and their staffs became infected with malware.MalwareO Public administration and defence, compulsory social securityCCUShttps://www.scmagazine.com/malware-found-on-some-arizona-government-computers/article/631045/Arizona Department of Administration
16
1506/01/2017?123-Reg123-Reg is the target of a DDoS attack which disrupted the company's services only days into 2017.DDoSJ Information and communicationCCGBhttp://www.zdnet.com/article/123-reg-once-again-the-target-of-severe-ddos-attack/123-Reg
17
1606/01/2017Kapustkiyesguarnacpuntademata.mil.veOne of the websites belonging to Venezuela’s ministry of defense (esguarnacpuntademata.mil.ve) is hacked by Kapustkiy in protest of what the attacker described as the dictatorship of President Nicolas Maduro in the country. The attacker leaks 2,100 records.SQLiO Public administration and defence, compulsory social securityHVEhttp://news.softpedia.com/news/venezuela-army-site-allegedly-hacked-in-protest-against-president-nicolas-maduro-511644.shtmlKapustkiy, esguarnacpuntademata.mil.ve, Nicolas Maduro
18
1707/01/2017?MJ FreewayMJ Freeway, a Denver company whose tracking software is used by hundreds of marijuana companies to comply with state regulations, says its main servers and backup system are down after a "targeted cyber attack".Targeted AttackJ Information and communicationCCUShttp://news.softpedia.com/news/hackers-target-marijuana-shops-with-attacks-against-critical-software-511777.shtmlMJ Freeway
19
1807/01/2017?Princeton UniversityPrinceton University is one of the 27,000 victims that have their data wiped by attackers leveraging a vulnerable MongoDB.MalwareP EducationCCUShttps://www.databreaches.net/princeton-university-becomes-victim-of-mongodb-ransom-attacks/Princeton University, MongoDB, Ransomware
20
1908/01/2017?esea.netOver 1.5 million user profiles featuring names, email addresses and personal IDs from the eSports Entertainment Association (Esea), a leading competitive videogame community, are leaked online after being hijacked by hackers in late December last year.UnknownR Arts entertainment and recreationCCUShttp://www.ibtimes.co.uk/millions-esports-player-data-stolen-by-hackers-leaked-online-1600050esea.net
21
2009/01/2017?Netflix Users in the USFireEye Labs discovers a sophisticated phishing campaign in the wild targeting the credit card data and other personal information of Netflix users primarily based in the United States.Account HijackingX IndividualCCUShttps://www.fireeye.com/blog/threat-research/2017/01/credit_card_dataand.htmlNetflix, FireEye Labs
22
2109/01/2017?http://forumserver.twoplustwo.comThe operators of the world’s largest online poker discussion forum, TwoPlusTwo, confirm that the forum was hacked at some point late in 2016, with the personal data then being offered for sale.UnknownR Arts entertainment and recreationCCUShttps://www.databreaches.net/twoplustwo-poker-forum-hacked-personal-data-stolen-and-offered-for-sale/forumserver.twoplustwo.com, TwoplusTwo
23
2210/01/2017?The Los Angeles Valley College (LAVC)The Los Angeles Valley College (LAVC) is forced to pay $28,000 in bitcoin after cybercriminals successfully infected its computer networks, email systems and voicemail lines with ransomware.MalwareP EducationCCUShttp://www.ibtimes.co.uk/la-school-pays-hackers-28000-bitcoin-after-computer-systems-hit-ransomware-1600304The Los Angeles Valley College, LAVC, ransomware
24
2310/01/2017AnonymousMultipe Thai Governmantal job portalsThe Anonymous kick off another run of #OpSingleGateway and take down multiple governmental job portals, leaking personal and sensitive details of officials and job seekers.UnknownO Public administration and defence, compulsory social securityHTHhttps://www.hackread.com/anonymous-hacks-thai-govt-job-portal/Anonymous, OpSingleGateway
25
2411/01/2017Giulio Occhionero and Francesca Maria Occhioneroleading Italian politicians, businessmen and MasonsItalian siblings Giulio and Francesca Maria Occhionero are arrested in Rome, charged with conducting a long-running cyber espionage campaign against leading Italian politicians, businessmen and Masons using a variant of the malware family EyePyramidTargeted AttackX IndividualCEIThttp://www.securityweek.com/italian-siblings-arrested-over-long-running-cyber-espionage-campaignGiulio Occhionero, Francesca Maria Occhionero, EyePyramid
26
2511/01/2017?JabbimThe Jabbim Instant Messaging service is hacked and the database (8gb) is dumped in the dark web.UnknownJ Information and communicationCCCZhttp://motherboard.vice.com/en_uk/read/hack-exposes-reams-of-private-jabber-chatsJabbim
27
2611/01/2017The Dark Ovelord?littlereddooreci.orgThe Dark Overlord hacks the computers of an Indiana-based cancer agency and asks for a large payment of 50 Bitcoin ($44,800) not to release the data. Intially the attack seemed to have been caused by ransomware.MalwareQ Human health and social work activitiesCCUShttps://www.databreaches.net/in-little-red-door-cancer-agency-hit-by-ransomware-attack-by-thedarkoverlord/littlereddooreci.org, The Dark Overlord
28
2711/01/2017?Kanawha County SchoolsKanawha County Schools tells that their internal documents have been restored after a ransomware attack.MalwareP EducationCCUShttps://www.databreaches.net/wv-internal-documents-restored-after-ransomware-hack-on-school-district/Kanawha County Schools
29
2812/01/2017?CellebriteMotherboard obtains 900 GB of data related to Cellebrite, one of the most popular companies in the mobile phone hacking industry. The cache includes customer information, databases, and a vast amount of technical data regarding Cellebrite's products.UnknownJ Information and communicationCCILhttps://motherboard.vice.com/read/hacker-steals-900-gb-of-cellebrite-dataCellebrite, Motherboard
30
2912/01/2017?General MotorsReports emerge claiming that GM employees’ names and social security numbers might have been exposed during a breach.UnknownC ManufacturingCCUShttp://news.softpedia.com/news/detroit-car-makers-allegedly-hacked-names-and-social-security-numbers-stolen-511809.shtmlGeneral Motors
31
3013/01/2017AnonymousMultipe Thai Governmantal job portalsThe Anonymous kick off another run of #OpSingleGateway and take down multiple governmental job portals, leaking personal and sensitive details of officials and job seekers.UnknownO Public administration and defence, compulsory social securityHTHhttps://www.hackread.com/anonymous-hacks-thai-govt-job-portal/Anonymous, OpSingleGateway
32
3113/01/2017?Barts health trust, which runs five hospitals in east London: the Royal London, St Bartholomew’s, Whipps Cross, Mile End and NewhamThe largest NHS trust in England is hit by rmalware. Unlike early reports suggest, ransomware is ruled out as the cause of the outage.MalwareQ Human health and social work activitiesCCGBhttps://www.infosecurity-magazine.com/news/cyber-attack-barts-health-systems/Barts Health Trust, the Royal London, St Bartholomew’s, Whipps Cross, Mile End, Newham, NHS
33
3213/01/2017AnonymousMultipe Thai Governmantal job portalsThe Anonymous kick off another run of #OpSingleGateway and take down multiple governmental job portals, leaking personal and sensitive details of officials and job seekers.UnknownO Public administration and defence, compulsory social securityHTHhttps://www.hackread.com/anonymous-hacks-thai-govt-job-portal/Anonymous, OpSingleGateway
34
3313/01/2017?University of Maryland School of MedicineA doctor’s practice plan affiliated with the University of Maryland School of Medicine notifies patients that somebody hacked the account of a physician assistant’s email account that contained the personal information of patients. 1500 patients are affected.UnknownQ Human health and social work activitiesCCUShttps://www.databreaches.net/email-account-with-patient-information-at-um-doctors-group-hacked/University of Maryland School of Medicine
35
3414/01/2017Kapustkiygdc.gob.veIn a form of protest against President Nicolas Maduro, Kapustkiy hacks a website of a local government and dumps around 900 records on pastebin.LFI/SQLiO Public administration and defence, compulsory social securityHVEhttp://securityaffairs.co/wordpress/55312/hacking/kapustkiy-hacked-government-of-venezuela.htmlKapustkiy, gdc.gob.ve, Nicolas Maduro
36
3514/01/2017?MrExcel.comMrExcel.com reveals that its forum has been compromised on the morning of December 6, 2016.vBulletin VulnerabilityJ Information and communicationCCUShttps://www.databreaches.net/details-of-data-breach-at-mrexcel-com/MrExcel.com
37
3614/01/2017?Dracut Public SchoolsCurrent and former employees’ personal information, including SSN, is acquired by a hacker after an employee falls for what the district describes as a “sophisticated phishing scheme.”Account HijackingP EducationCCUShttps://www.databreaches.net/ma-dracut-schools-employee-data-hacked-after-employee-falls-for-phishing-attempt/Dracut Public Schools
38
3715/01/2017?Several Indian BanksSeveral Indian Banks discover that their SWIFT systems have been compromised to create fake documents.UnknownK Financial and insurance activitiesCCINhttp://tech.economictimes.indiatimes.com/news/technology/hackers-infiltrate-govt-owned-bank-systems-to-create-fake-trade-docs/56583688SWIFT
39
3813/01/2017Indonesian HackersLegitimate WebsitesResearchers from Sucuri discover two connected advertising fraud campaigns that compromise legitimate web sites and abuse Google AdSense.Clickjacking via Malicious JavascriptX IndividualCC>1https://www.scmagazine.com/pair-of-ad-fraud-campaigns-linked-to-defacement-attacks-by-indonesian-hackers/article/631351/Adsense
40
3915/01/2017?IHOP (International House of Pancakes)IHOPTwitter account (@IHOP) is hacked and posts a political tweet against Hillary Clinton.Account HjiackingI Accommodation and food service activitiesCCUShttp://www.nbclosangeles.com/news/local/IHOP-Hacked-Twitter-Political-Tweet-Hillary-Clinton-Sunday-410775535.htmlIHOP, @IHOP, International House of Pancakes, Hillary Clinton
41
4016/01/2017?Sentara HealthcareA cyber security breach at a third party vendor for Sentara Healthcare compromises the records of over 5,000 patients.UnknownQ Human health and social work activitiesCCUShttp://wavy.com/2017/01/16/sentara-healthcare-security-breach/Sentara Healthcare
42
4116/01/2017?Channel OneRussian state television Channel One blames hackers for the leak online of the final episode of the BBC drama Sherlock a day before its actual planning.UnknownJ Information and communicationCCRUhttp://securityaffairs.co/wordpress/55386/hacking/sherlock.htmlChannel One, Sherlock Holmes
43
4216/01/2017?Laptop belonging to the special investigation team probing President Park Geun-hye’s political scandal.The Korea Times reveals the details of an attempt made by oversea attackers to hack into a laptop belonging to the special investigation team probing President Park Geun-hye’s political scandal.Targeted AttackO Public administration and defence, compulsory social securityCEKRhttp://m.koreatimes.co.kr/pad/news/view.jsp?req_newsidx=222181Park Geun-hye
44
4317/01/2017?SupercellSupercell Forum is hacked and 1.1 million accounts are leaked. The breach allegedly took place in September 2016.UnknownR Arts entertainment and recreationCCFIhttps://motherboard.vice.com/en_us/article/hackers-steal-Forum-accounts-from-clash-of-clans-creator-supercellSupercell
45
4417/01/2017?20,000 individuals in the NetherlandsPolice in the Netherlands are set to email 20,000 possible fraud victims urging them to change their account details, after discovering their credentials had been stolen by a man arrested last year on suspicion of multiple cybercrime offences.Malware/Account HijackingX IndividualCCNLhttps://www.infosecurity-magazine.com/news/dutch-cops-warn-20000-email/
46
4517/01/2017?Racingpulse.inA popular horse racing website (Racingpulse.in) is hacked with Ransomware.MalwareR Arts entertainment and recreationCCINhttps://www.hackread.com/india-horse-racing-site-hacked-with-dharma-ransomware/Racingpulse.in, ransomware, Dharma
47
4617/01/2017?Advanced Flexible Composites Inc.The computer system of Advanced Flexible Composites Inc. is hacked preventing the firm from processing quote requests or orders and from receiving emails.MalwareC ManufacturingCCUShttps://www.databreaches.net/computer-hacker-hits-illinois-processor/Advanced Flexible Composites Inc.
48
4718/01/2017?College students across the United StatesThe FBI’s Internet Crime Complaint Center publishes an alert against a scam tricking college students into depositing fraudulent checks into their bank accounts.Account HjiackingP EducationCCUShttps://www.ic3.gov/media/2017/170118.aspxFBI’s Internet Crime Complaint Center
49
4818/01/2017?Several biomedical research facilitiesMalwarebytes reveals the details of a newly discovered Mac malware, which has likely been targeting biomedical research facilities for at least two years without detection.MalwareM Professional scientific and technical activitiesCCUShttps://blog.malwarebytes.com/threat-analysis/2017/01/new-mac-backdoor-using-antiquated-code/Malwarebytes
50
4918/01/2017?POPEYESCCC Restaurant Enterprises, LLC, doing business as POPEYES, announce that a recent data security incident may have compromised the security of payment information of some customers who used debit or credit cards at 10 Restaurant locations between May 5, 2016 and August 18, 2016.PoS MalwareI Accommodation and food service activitiesCCUShttps://www.databreaches.net/popeyes-discloses-payment-card-breach-that-began-in-may-2016-10-locations-affected/POPEYES
51
5020/01/2017?WCHQ 100.9 FMCrescent Hill Radio WCHQ 100.9 FM, a popular, non-profit radio station in Louisville, Kentucky is hacked to play an anti-Trump song for almost 15 minutes by interrupting regular programming.UnknownJ Information and communicationCCUShttp://www.ibtimes.co.uk/radio-station-kentucky-hacked-fk-donald-trump-song-played-15-minutes-1602495Crescent Hill Radio WCHQ 100.9 FM, Donald Trump
52
5120/01/2017?St Louis Public LibrarySt Louis Public Library is hit by a ransomware attack. Hattackers demand $35,000 worth in Bitcoin.MalwareQ Human health and social work activitiesCCUShttp://www.welivesecurity.com/2017/01/20/ransomware-attack-hits-st-louis-public-library/St Louis Public Library, Ransomware
53
5220/01/2017?Bowlmor AMFBowlmor AMF, the world’s largest bowling center operator, says that it had a possible data breach at 21 of its more than 300 domestic locations in 12 states between Feb. 4 and March 19.PoS MalwareR Arts entertainment and recreationCCUShttps://www.databreaches.net/payment-card-data-snatching-malware-found-on-21-bowlmor-amf-bowling-centers-computers/Bowlmor AMF
54
5320/01/2017?Ohio State Veterinary Medical CenterA malware infection is to blame for a security breach that could put the personal information of up to 4,611 clients of the Ohio State Veterinary Medical Center.MalwareP EducationCCUShttps://www.databreaches.net/ohio-state-veterinary-medical-center-at-dublin-hit-with-possible-data-breach/Ohio State Veterinary Medical Center
55
5421/01/2017?BBC Northampton Twitter account (@BBCNorthampton)The BBC Northampton Twitter account (@BBCNorthampton) is hacked and reports the false news that Donald Trump had been shot.Account HjiackingJ Information and communicationCCGBhttp://www.bbc.com/news/uk-england-northamptonshire-38704470BBC Northampton, Twitter, @BBCNorthampton, Donald Trump
56
5521/01/2017Sc0rp10nGh0s7www.nari-icmr.res.inSc0rp10nGh0s7 from the Shad0w Security crew breaks into the servers of the National Aids Research Institute NARI (India) and claims to have accessed a more than 1 GB archive containing the results for dozens Hiv test.SQLi?Q Human health and social work activitiesCCINhttp://securityaffairs.co/wordpress/55535/cyber-crime/national-aids-research-institute-nari-hack.htmlnari-icmr.res.in, Sc0rp10nGh0s7
57
5621/01/2017?Sundance Film FestivalThe box office and other systems at the Sundance Film Festival are shut down by hackers.DDoSR Arts entertainment and recreationCCUShttps://www.cnet.com/news/hackers-sundance-film-festival-shut-down-box-office/Sundance Film Festival
58
5722/01/2017Chipher0007AlphaBayAbout 218,000 unencrypted private messages posted to the AlphaBay dark web marketplace are accessed and released to the public.Undisclosed VulnerabilitiesG Wholesale and retail tradeCCN/Ahttps://www.scmagazine.com/alphabay-dark-web-marketplace-users-compromised/article/634111/AlphaBay. Chipher0007
59
5822/01/2017OurMineNew York Times Video Twitter Account (@nytvideo)OurMine hacks the Twitter account of New York Time Video (@nytvideo) and posts fake news.Account HjiackingJ Information and communicationCCUShttp://securityaffairs.co/wordpress/55580/cyber-crime/new-york-times-hacked.htmlNew York Times Video Twitter Account, @nytvideo, OurMine
60
5923/01/2017?Lloyds BankThe Financial Time reveals that Lloyds Bank has been targeted by a large scale DDoS attack over the past two weeks. Two crooks claims responsibility for the attack.DDoSK Financial and insurance activitiesCCGBhttp://www.zdnet.com/article/lloyds-bank-services-hit-by-denial-of-service-attack/Lloyds Bank
61
6023/01/2017?Several targets in Saudi ArabiaSaudi Arabia warns organizations in the Kingdom to be on the alert for cyber attacks carried on via a new variant of the Shamoon virus. Targets include a chemical firm (Sadara Chemical Co) and the Ministry of Labor and Social Development.MalwareY Multiple targetsCWSAhttp://saudigazette.com.sa/saudi-arabia/saudi-arabia-warns-cyber-attacks-labor-ministry-hit/Shamoon, Sadara Chemical Co, Ministry of Labor and Social Development
62
6123/01/2017?XP Investimentos SAHackers who stole data from 29,000 clients of XP Investimentos SA allegedly tried to get the Brazilian independent securities firm to pay 22.5 million reais ($7.1 million) to keep the security breach secret.Industry: SecuritiesZ UnknownCCBRhttp://www.nasdaq.com/article/hackers-blackmail-brazil-broker-xp-over-client-data-breach-valor-20170123-01328XP Investimentos SA
63
6224/01/2017?Grey Eagle Resort and CasinoGrey Eagle Resort and Casino and the attackers threatne to dump hundreds of gigabytes of data. The Casino confirms the breach.UnknownI Accommodation and food service activitiesCCUShttps://www.databreaches.net/ca-grey-eagle-resort-hackers-threaten-to-dump-sensitive-employee-and-customer-info/Grey Eagle Resort and Casino
64
6324/01/2017?larisa@steamreal.ru
ewartumba@mail.ru
Websites of the Democratic Party in the Wisconsin area are hacked by alleged Russian Hackers.Undisclosed VulnerabilitiesN Administrative and support service activitiesCCUShttp://www.usatoday.com/story/news/politics/2017/01/24/russians-suspected-hacking-wisconsin-dems/97023222/Democratic Party, Wisconsin, larisa@steamreal.ru, ewartumba@mail.ru
65
6425/01/2017APT28 AKA Fancy BearUnnamed TV Station in the UKSecureWorks reveals that APT28 was able to infiltrate an unnamed TV station in the UK and stay undetected for 12 months starting from July 2015.Targeted AttackJ Information and communicationCEGBhttp://www.ibtimes.co.uk/russia-linked-fancy-bear-hackers-had-access-uk-television-station-almost-year-1603226APT28, Fancy Bear, SecureWorks
66
6525/01/2017?Cockrell Hill PolicePolice in Cockrell Hill, Texas admits in a press release to have lost years worth of evidence after the department's server was infected with ransomware.MalwareO Public administration and defence, compulsory social securityCCUShttps://www.bleepingcomputer.com/news/security/police-department-loses-years-worth-of-evidence-in-ransomware-incident/Cockrell Hill Police, Ransomware
67
6625/01/2017?Argyle school districtArgyle school district warns its workers that their W-2 tax forms were lost in a phishing attack.Account HjiackingP EducationCCUShttp://www.theregister.co.uk/2017/01/25/texas_school_district_loses_w2s/Argyle school district
68
6725/01/2017?Several Chinese Internet GiantsA dark web vendor going by the handle “DoubleFlag” sells 1 billion accounts stolen from several Chinese Internet giants, including NetEase Inc and its subsidiaries 126.com, 163.com and Yeah.net. Tencent Holdings Limited owned QQ.com, TOM Group’s Tom.com 163.net, Sina Corporation’s Sina.com/Sina.com.cn, Sohu, Inc.’s Sohu.com and Letter Network Information Technology Co., Ltd owned eYou.com.UnknownJ Information and communicationCCCNhttps://www.hackread.com/hacker-selling-1-billion-chinese-internet-giants-data/DoubleFlag, NetEase Inc, 126.com, 163.com, Yeah.net. Tencent Holdings Limited, QQ.com, TOM Group, Tom.com, 163.net, Sina Corporation, Sina.com, Sina.com.cn, Sohu Inc., Sohu.com and Letter Network Information Technology Co., Ltd owned eYou.com.
69
6825/01/2017?U.S. CellularDoubleFlag now claims to sell a database containing 126 million customer records from U.S. Cellular. The company denies the hack.UnknownJ Information and communicationCCUShttps://www.hackread.com/hacker-selling-126-million-us-cellular-customers-data/DoubleFlag, U.S. Cellular
70
6925/01/2017?Campbell County HealthSocial Security numbers and W-2 information for about 1,400 employees who worked over the past year at Campbell County Health are mistakenly released to someone impersonating a hospital executive.Account HjiackingQ Human health and social work activitiesCCUShttps://www.databreaches.net/wy-hospital-scammed-for-employee-information/Campbell County Health, W2
71
7025/01/2017Four TeenagersSeveral E-Commerce websitesFour teenagers are arrested for allegedly digitally shoplifting vouchers worth Rs92 lakh [$134,985.29 USD] exploiting a vulnerability in tha payment gateway (PayU).Payment gateway vulnerabilityJ Information and communicationCCINhttp://www.hindustantimes.com/delhi/delhi-police-arrests-four-hackers-for-digital-shoplifting/story-gZ9F9IuiUwBv7dUjUBcIAI.htmlPayU
72
7125/01/2017?Tipton County SchoolsTipton County Schools are hit by a phishing scam aimed to steal employees' personal W-2 forms.Account HjiackingP EducationCCUShttps://www.databreaches.net/tn-tipton-county-schools-employee-falls-for-phish-emails-employees-w-2-data-to-criminal/Tipton County Schools
73
7225/01/2017?Swedish Armed ForcesDaily newspaper Dagens Nyheter reports that Sweden's armed forces were recently exposed to an extensive cyber attack that prompted them to shut down an the Caxcis IT system, used in military exercisesUnknownO Public administration and defence, compulsory social securityCESEhttp://www.reuters.com/article/us-sweden-defence-cyberattack-idUSKBN1592K2Swedish Armed Forces, Caxcis IT system, Dagens Nyheter
74
7326/01/2017?Hong Kong Securities BrokersHong Kong's securities regulator says that brokers in the city has suffered major DDoS cyber attacks and warn of possible further incidents across the industry.DDoSK Financial and insurance activitiesCCHKhttp://www.reuters.com/article/us-hongkong-regulator-cyber-idUSKBN15B09RHong Kong
75
7426/01/2017?Odessa School DistrictThe Odessa School District is hit by a phishing scam aimed to steal employees' personal W-2 forms.Account HjiackingP EducationCCUShttps://www.databreaches.net/odessa-one-of-eight-school-districts-targeted-in-e-mail-phishing-scam/Odessa School District
76
7526/01/2017?High FidelityHigh Fidelity users receive an e-mail from Philip Rosedale, CEO and founder of the new social VR world, announcing the compromise of a staff email account in late December and Early January.Account HjiackingR Arts entertainment and recreationCCUShttp://nwn.blogs.com/nwn/2017/01/high-fidelity-vr-security-breach-philip-rosedale.htmlHigh Fidelity
77
7627/01/2017?D.C. PoliceRansomware infected 70 percent of storage devices that record data from D.C. police surveillance cameras eight days before President Trump’s inauguration, forcing major citywide reinstallation efforts,MalwareO Public administration and defence, compulsory social securityCCUShttps://www.washingtonpost.com/local/public-safety/hackers-hit-dc-police-closed-circuit-camera-network-city-officials-disclose/2017/01/27/d285a4a4-e4f5-11e6-ba11-63c4b4fb5a63_story.html?utm_term=.7b48c2b9c1afWashingotn Post, Ransomware
78
7727/01/2017?NATOTalos reveals the details of Matryoshka Doll, a spear phishing campaign targeting NATO officials during the Christmas and New Year HolidayTargeted AttackO Public administration and defence, compulsory social securityCEINThttp://blog.talosintel.com/2017/01/matryoshka-doll.htmlTalos, NATO, Matryoshka Doll
79
7827/01/2017?Australian Nuclear Science and Technology Organisation (ANSTO)The Australian Nuclear Science and Technology Organisation (ANSTO) investigate a computer security breach at the Australian Synchrotron that saw hackers steal scientists' usernames and passwords.Undisclosed VulnerabilitiesO Public administration and defence, compulsory social securityCCAUhttp://www.theregister.co.uk/2017/02/03/australian_synchrotron_hacked/Australian Nuclear Science and Technology Organisation, ANSTO, Synchrotron
80
7927/01/2017?SunrunSolar panel maker Sunrun is hit with a spearphishing attack, impersonating the CEO Lynn Jurich, that gets away with the company employee W-2 information.Account HjiackingC ManufacturingCCUShttp://www.sfgate.com/business/article/Sunrun-hack-nabs-employee-W-2-tax-forms-10889441.phpSunrun, Lynn Jurich
81
8027/01/2017?Princeton Pain ManagementPrinceton Pain Management is notifying 4,668 patients of a hack that was
detected on November 28. Although they found no evidence that data were
removed from their system, protected health information (PHI) was
accessed.
UnknownQ Human health and social work activitiesCCUShttps://www.databreaches.net/princeton-pain-management-notifies-patients-after-hacker-gains-access-to-phi/Princeton Pain Management
82
8128/01/2017?Romantik Seehotel JaegerwirtOne of Europe's top hotels, Romantik Seehotel Jaegerwirt, admits they had to pay thousands in Bitcoin ransom to cybercriminals who managed to hack their electronic key system, locking hundreds of guests out of their rooms until the money was paid.MalwareI Accommodation and food service activitiesCCAThttps://cdn.ampproject.org/c/www.thelocal.at/20170128/hotel-ransomed-by-hackers-as-guests-locked-in-rooms/ampRomantik Seehotel Jaegerwirt, Ransomware
83
8228/01/2017OurMineMultiple Twitter accounts associated with the World Wrestling Entertainment GroupOurMine hacks multiple Twitter accounts associated with the World Wrestling Entertainment group, including that of WWE Universe, WWE NXT, WWE Network, Summer Slam as well as wrestlers John Cena and Triple H. WWE's Tumblr page is also compromised.Account HjiackingR Arts entertainment and recreationCCUShttp://www.ibtimes.co.uk/ourmine-hacks-multiple-wwe-cnn-social-media-accounts-1603815OurMine, WWE Universe, WWE NXT, WWE Network, Summer Slam, John Cena, Triple H
84
8328/01/2017?Dr.Web
Emsisoft
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling with their illegal activities.DDoSJ Information and communicationCCRU
AT
https://www.bleepingcomputer.com/news/security/emsisoft-website-hit-by-ddos-attack-as-company-releases-ransomware-decrypter/Dr. Web, Emsisoft
85
8430/01/2017APT28 AKA Fancy BearPolish Foreign MinistryThe Polish daily newspaper Rzeczpospolita reveals that the hack against the Polish Foreign Ministry occurred in December was probably orchestrated by APT28.Targeted AttackO Public administration and defence, compulsory social securityCEPLhttp://www.thenews.pl/1/10/Artykul/291184,Russian-hackers-behind-attempted-Polish-foreign-ministry-hack-reportAPT28, Fancy Bear, Polish Foreign Ministry, Rzeczpospolita
86
8531/01/2017?Czech Foreign MinistryCzech Foreign Minister Lubomir Zaoralek says that hackers breached dozens of email accounts at the Czech Foreign Ministry in an attack resembling one against the U.S. Democratic Party.Targeted AttackO Public administration and defence, compulsory social securityCECZhttp://www.reuters.com/article/us-czech-cybercrime-idUSKBN15F1OSLubomir Zaoralek, Czech Foreign Ministry, Russia
87
8631/01/2017Gaza CybergangSeveral Govrenments in the Middle East AreaResearchers at Palo Alto Networks reveal the details of a new cyber espionage campaign carried on by the Gaza Cybergang.Targeted AttackO Public administration and defence, compulsory social securityCE>1http://securityaffairs.co/wordpress/55840/intelligence/gaza-cybergang-dustysky.htmlGaza Cybergang
88
8731/01/2017?CD Projekt RedCD Projekt Red, the Poland-based developer behind the popular 'Witcher' game and comic series, is hit with a forum hack that compromised over 1.8 million user credentials. The hack allegedly took place in March last year.UnknownR Arts entertainment and recreationCCPLhttp://www.ibtimes.co.uk/cd-projekt-red-forum-hack-witcher-3-developer-breach-exposes-1-8-million-accounts-1604124CD Projekt Red, Witcher
89
8831/01/2017?Linking CountyLicking County servers are targeted by a rnsomware infection.MalwareO Public administration and defence, compulsory social securityCCUShttps://www.bleepingcomputer.com/news/security/ransomware-incident-shuts-down-countys-government-infrastructure/Linking County, Ransomware
90
8931/01/2017?Xbox360 and Playstation Portable ISO ForumsAn unidentified hacker reportedly breaches the XBOX 360 and PlayStation Portable ISO forums compromising 2.5 million gamer accounts. The breach is unconfirmed.UnknownR Arts entertainment and recreationCCUS
JP
https://www.scmagazine.com/xbox-and-psp-forum-accounts-breached/article/635024/Xbox360, Playstation Portable
91
9031/01/2017?Sunny 107.9 WFBS-LPFMAnother station is hijacked to play the "F*** Donald Trump" song.Barix box hijackingJ Information and communicationCCUShttps://radioinsight.com/headlines/110432/multiple-stations-hijacked-with-profane-anti-trump-song/Sunny 107.9 WFBS-LPFM, Donald Trump
92
9101/02/2017?Point of Sale infrastructure un Brazil and other countriesArbor Networks researchers reveal the details of the Flokibot malware family targeting Point of Sale infrastructure in Brazil and other countries.PoS MalwareK Financial and insurance activitiesCCBRhttps://www.scmagazineuk.com/zeus-inspired-flokibot-spotted-targeting-pos-software/article/635570/FlokiBot
93
9202/02/2017Chinese state-sponsored hackersMilitary and aerospace interests in Russia and BelarusProofpoint reveals the details of an ongoing cyber-espionage campaign targeting military and aerospace interests in Russia and Belarus via ZeroT and the PlugX RAT.Targeted AttackC ManufacturingCERU
BY
http://securityaffairs.co/wordpress/55942/apt/chinese-state-sponsored-aerospace.htmlPlugX, ZeroT, China, CVE-2012-0158
94
9302/02/2017?City of TroyThe City of Troy computer system is the victim of a ransomware attack.MalwareO Public administration and defence, compulsory social securityCCUShttp://www.timesunion.com/local/article/Virus-found-in-Troy-s-computer-system-10904935.phpTroy, ransomware
95
9403/02/2017APT29Norwegian Labour PartyNorway’s security service says nine email accounts — including those belonging to the Labour party, the foreign ministry and defense ministry — have been targeted by hackers belonging APT29.Targeted AttackO Public administration and defence, compulsory social securityCENOhttp://www.usatoday.com/story/news/2017/02/03/norway-russian-hackers-hit-spy-agency-defense-labour-party/97441782/APT29, Cozy Bear, Norwegian Labour Pary
96
9503/02/2017?Tiverton Town CouncilJohn Vanderwolfe, a town clerk wipes council documents dating back to 2015 after mistakenly opening an email containing a ransomware malware.MalwareO Public administration and defence, compulsory social securityCCGBhttp://www.bbc.co.uk/news/uk-england-devon-38857488Tiverton Town Council, Malware, Ransomware, John Vanderwolfe
97
9603/02/2017AnonymousFreedom Hosting IIThe Anonymous take down Freedom Hosting II, the largest repository of dark web sites. The hackers are able to steal 75GB worth of files and 2.6 GB of databasesUnknownJ Information and communicationHN/Ahttps://www.forbes.com/sites/leemathews/2017/02/03/the-biggest-host-of-dark-web-sites-got-hacked-and-shut-down/#419541829e50Anonymous, Freedom Hosting II
98
9703/02/2017?Manatee County School DistrictThe Manatee County School District is the victim of a phishing scam that compromises the information from almost 8,000 employees.Account HijackingP EducationCCUShttp://wfla.com/2017/02/06/almost-8000-manatee-co-school-employees-victimized-in-cyber-attack/Manatee County School District
99
9804/02/2017BerkutPoliceOneMotherboard reveals that a hacker going with the handle of Berkut is selling a database allegedly containing over 700,000 user accounts from PoliceOne, a popular law enforcement forum.UnknownJ Information and communicationCCUShttps://motherboard.vice.com/en_us/article/hacker-steals-thousands-of-accounts-from-police-forumPoliceOne, Berkut,
100
9904/02/2017?David BeckhamDavid Beckham's emails are held hostage by hackers, and published after his representatives refuse to pay a ransom of €1 million (£860,000). The ‘Beckileaks' came as part of a breach on sports and entertainment agency, Doyen Global (18.6 million emails apparently accessed in 2015 and 2016).UnknownR Arts entertainment and recreationCCGBhttps://www.scmagazine.com/david-beckhams-emails-hacked-and-released-after-ransom-refusal/article/636560/David Beckham, Doyen Global
Loading...
Main menu