Catalog of June2022 Cyber Attacks and Data Breaches – 34.9 Million Records Breached

Cyber attacks

• Novartis says no sensitive data was compromised in cyber attack (unknown)
• Shields Health Care Group notifies patients after hack (2 million)
• Personal and sensitive files from Tehama County Social Services leaked on dark web (unknown)
• MCG Health notifies patients and health plan members of data breach (unknown)
• Choice Health Insurance notifying people after vendor error resulted in a data breach (2,141,006)
• Guadalupe County investigating potential network breach (unknown)
• Central Florida Inpatient Medicine notifies patients after employee email account compromised (197,733)
• Baptist Medical Center and Resolute Health Hospital notifying patients after malware attack snagged patient data (1,254,534)
• AdviceOne, LLC announces security breach (7,008)
• Fred Hutchinson Cancer Center announces security breach (unknown)
• Allaire Health Services announces security incident (unknown)
• Fintech company Lower LLC issues notice of security breach (unknown)
• 90 Degree Benefits Wisconsin confirms recent data breach leaked consumers’ personal data (unknown)
• Compromised email account leads to security incident at Private Client Services (22,554)
• Flagstar Bank discloses security incident (1.5 million)
• Brazilian retailer Fast Shop confirms cyber attack (unknown)
• ADM Associates announces security incident (unknown)
• Guardian Fueling Technologies has been hacked (unknown)
• Pape-Dawson Engineers, Inc. hit by cyber criminals (unknown)
• Acorda Therapeutics, Inc. announces breach following compromised emails (unknown)
• DiversiTech Corporation reports “data privacy event” impacting names and social security numbers (unknown)
• Robert Half International reports data breach affecting consumers’ social security numbers (unknown)
• Avamere Health Services announces data breach impacting skilled nursing and senior living employees (unknown)
• DDOS attack hits Lithuania after sanctions feud with Russia (unknown)
• Mason Tenders’ district council confirms data breach (20,000)
• NEworks unavailable due to cyber attack on Geographic Solutions (unknown)

Ransomare

• Yodel becomes the latest victim of a cyber ‘incident’ (unknown)
• Costa Rica’s public health agency hit by Hive ransomware (unknown)
• Italian city of Palermo shuts down all systems in suspected ransomware attack (unknown)
• Goodman Campbell Brain and Spine alerts patients to ransomware attack while continuing to provide care (unknown)
• Shoprite Group issues warning on ‘suspected data compromise’ (unknown)
• Yuma Regional Medical Center notifying patients of ransomware attack (700,000)
• Montrose Environmental Group says ransomware attack took place over weekend (unknown)
• ALPHV threat actors claim to have attacked Plainedge Public Schools (unknown)
• Tenafly Public Schools cancelled finals after ransomware attack (unknown)
• Ransomware attack reported at Council on Aging of Buncombe County (unknown)
• Shutterfly provides notice of ransomware attack to employees (1,400)
• Perkins & Co. announces security breach related to incident at Cloud-hosting company Netgain (354,647)
• Phelps Health notifies patients of MCG Health breach (unknown)
• Hospital San José, Las Palmas De Gran Canaria hit by ransomware (unknown)
• Grand Valley State University hit by ransomware but remains publicly silent (unknown)
• Vice Society claims responsibility for attack on one of Milan’s most important hospital systems (unknown)
• Brooks County pays off hacker with tax dollars after ransomware attack (unknown)
• Artear, the Argentinian multimedia giant, struck by ransomware (unknown)
• Pennsylvania HIM services provider Diskriter hit with ransomware (unknown)
• Fitzgibbon Hospital hit by ransomware, sensitive data leaked (unknown)
• Cyber attack forces Iran steel company to halt production (unknown)
• Ransomware attack caused ongoing Napa Valley College internet and phone system outage (unknown)
• SuperAlloy Industrial Company ignores Hive ransomware demands (unknown)

Data breaches

• Health PEI employees are being notified of a privacy breach after an employee’s laptop was stolen (5,200)
• Pegasus Airlines leaks 6.5TB of personal information of flight crew (23 million)
• Icare sends private details of workers to wrong employers (193,000)
• ACY Securities leaked 60 GB of user data (unknown)
• India’s farmers exposed by new Aadhaar data leak (unknown)
• Confidential record leak leaves CalBar, lawyers, clients exposed (322,500)
• Patient radiology files accidentally exposed online by Yale New Haven Hospital (unknown)
• Personal details of Memorial University of Newfoundland students leaked in email goof (15,000)
• USB devices with personal data of all Amagasaki residents lost (460,000)
• Massive trove of gun owners’ private information leaked by California Attorney General (18,090)
• Misconfigured Kubernetes clusters were found exposed on the Internet (900,000)
• Dripping Springs Independent School District notifies DA of breach (367)

Financial information

• Funds stolen from Floyd County Schools in cyber attack (unknown)
• EMC National Life Company says it was breached (288,288)
• Numrich Gun Parts Corporation suffers cyber attack (45,169)
• Malaysian POS provider StoreHub exposed customer info in data leak (1 million)
• Taco Bell employee in South Carolina accused of credit card, identity fraud (unknown)
• Ameriprise suffers cyber attack (unknown)
• FBI investigating $100 million theft from blockchain company Harmony (unknown)
• Hackers claim to hit Israeli tourism sites (120,000)

Malicious insiders and miscellaneous incidents

• Theft of computers at the Centre Hospitalier Universitaire de Québec (9,500)
• Indian police linked to hacking campaign to frame activists (unknown)
• TridentCare confirms data breach after criminal breaks into office and steals hard drives (unknown)

• In other news…

  • WeLeakInfo.to and related domain names seized
  • Aurora pays $6 million bug bounty to ethical hacker
  • Daycare apps are dangerously insecure