Blogs

We have listed out the cyber attacks and data breaches news that occurred in the month of July

Cyber attacks

• Russian hackers suspected in Covid-19 vaccine intellectual property theft (unknown)
• Bitcoin scam leaks personal data of users from across the globe (248,926)
• Hackers obtain COVID-19 patient database in protest at treatment of Indian health workers (80,000)
• Australian MyGov accounts for sale on dark web (3,600)
• Hackers hijack Russia’s Ministry of Foreign Affairs’ Twitter account (1)
• Canadian insurer Heartland Farm Mutual says an employee’s email account breached (unknown)
• Brazilian health insurer Hapvida discloses cyber attack (unknown)
• Vancouver Coastal Health says no data was stolen in cyber attack (unknown)
• Google-backed Indian delivery start-up Dunzo breached in cyber attack (unknown)
• Four military schools in Canada targeted in ‘mysterious’ cyber attack (unknown)
• Hacker claims to have breached threat intelligence platform Data Viper (unknown)
• Celebrity Twitter accounts hacked in coordinated cyber attack (130)
• Iranian spies accidentally leaked videos of themselves (unknown)
• Israeli Water Authority confirmed attacks on two infrastructure facilities (unknown)
• Western Australia government hacked, with COVID-19 communications intercepted (unknown)
• Food delivery service Instacart denies cyber attack large-scale data breach (278,531)
• Spanish infrastructure manager Adif has been hit by a cyber attack (unknown)
• Ongoing Meow attack has nuked more than 1,000 databases without telling anyone why (unknown)
• University of Utah notifying patients after phishing attack (10,000)
• Carter and Hoff Dentistry reports attack on its IT network (7,000)
• US Department of Veterans Affairs Veterans Health Administration notifies those affected by third-party breach (1,501)
• California Health Care Plan warns of data breach (35,883)
• NM-based Four Winds Behavioral Health discloses email attack (500)
• QNAP NAS devices have been infected with the QSnatch malware (62,000)
• Hackers stole GitHub and GitLab OAuth tokens from Git analytics firm Waydev (unknown)
• Crypto wallet firm Ledger learns that user’s personal info was stolen (9,500)
• Las Cruces school meeting zoom-bombed (unknown)
• WV-based Elkins Rehabilitation & Care Center notifies residents and employees of data breach (unknown)
• Data breach as GEDmatch has privacy experts worried (1.4 million)
• TX-based Sheldon Independent School District confirms network breach (unknown)
• Hacker leaks user records from 18 companies for free (51,346,000)*

*Only includes incidents that haven’t previously been disclosed

Ransomware

• Blackbaud attack compromises data from more than 20 universities and charities (unknown)
• Labour Party confirms that it was affected by Blackbaud attack (unknown)
• CNY Works jobseekers Social Security numbers exposed in suspected ransomware attack (56,000)
• Turkish doctor’s office hit by ransomware (10,000)
• French telecommunications company Orange S.A says data was stolen in ransomware attack (20)
• Argentina-based Telecom targeted by ransomware (unknown)
• Cooke County Sheriff’s Office in Texas compromised in ransomware attack (unknown)
• MD-based Lorien Health Services hit by ransomware (21,800)
• Garmin services and production go down after ransomware attack (unknown)
• Athens ISD Board of Trustees has agreed to pay a $50,000 ransom (unknown)
• Canadian managed service provider Pivot Technology Solutions discloses ransomware attack (unknown)

Data breaches

• South East Coast Ambulance employee personal and medical details exposed (unknown)
• NHS Orkney employee sent patient info to the wrong person (1)
• South African medical data app LogBox leaves database unprotected online (unknown)
• Delhi University portal vulnerability exposes students’ personal data (23,034)
• Providence Health Plan in Oregon discloses data breach after coding error (49,511)
• Group of free VPN apps expose user data on publicly accessible database (20 million)
• University of Lethbridge reveals details regarding privacy breach at health centre (1,225)
• Wellington firm LPM Property Management leaks passports and driver’s licences (31,000)
• Heartland Counseling Services announces potential contacts information breach in email gaffe (500)
• Philadelphia-based insurer Independence Blue Cross confirms data breach (2,393)
• Gujarat Technological University students complain of data leak during online tests (28,000)
• Kiwibank investigating ‘significant’ privacy breach (4,200)

Financial information

• Palm Bay, FL, joins list of US cities affected by Click2Gov breach (unknown)
• Vermont Tax Department exposed three years’ worth of tax return info (unknown)

Malicious insiders and malicious incidents

• Employee at Indonesian Telkomsel arrested for allegedly stealing celebrity’s sensitive data (unknown)
• St Kilda Aussie Rules players’ medical files stolen in car smash-and-grab (unknown)
• Canadian pharmacists allegedly paid for access to their clients’ files (unknown)
• X-rays of male genitalia may have been shared online by PA imaging employee (unknown)
• Walmart reports that some patient data may have been stolen by looters during civil unrest (unknown)
• CVS and Walgreens also say that patient data was stolen during looting (21,000)
• 407 Express Toll Route employee used a company computer to access and compile a list of names (60,000)
• Canadian-based Central Health discloses privacy breach (240)
• Cub Pharmacies in Minnesota disclose patient data breach in looting (unknown)