Welcome to our June 2022 review of data breaches and cyber attacks. We identified 80 security incidents during the month, resulting in 34,908,053 compromised records.
You can find the full list below, broken down into categories.
Cyber attacks
- Novartis says no sensitive data was compromised in cyber attack (unknown)
- Shields Health Care Group notifies patients after hack (2 million)
- Personal and sensitive files from Tehama County Social Services leaked on dark web (unknown)
- MCG Health notifies patients and health plan members of data breach (unknown)
- Choice Health Insurance notifying people after vendor error resulted in a data breach (2,141,006)
- Guadalupe County investigating potential network breach (unknown)
- Central Florida Inpatient Medicine notifies patients after employee email account compromised (197,733)
- Baptist Medical Center and Resolute Health Hospital notifying patients after malware attack snagged patient data (1,254,534)
- AdviceOne, LLC announces security breach (7,008)
- Fred Hutchinson Cancer Center announces security breach (unknown)
- Allaire Health Services announces security incident (unknown)
- Fintech company Lower LLC issues notice of security breach (unknown)
- 90 Degree Benefits Wisconsin confirms recent data breach leaked consumers’ personal data (unknown)
- Compromised email account leads to security incident at Private Client Services (22,554)
- Flagstar Bank discloses security incident (1.5 million)
- Brazilian retailer Fast Shop confirms cyber attack (unknown)
- ADM Associates announces security incident (unknown)
- Guardian Fueling Technologies has been hacked (unknown)
- Pape-Dawson Engineers, Inc. hit by cyber criminals (unknown)
- Acorda Therapeutics, Inc. announces breach following compromised emails (unknown)
- DiversiTech Corporation reports “data privacy event” impacting names and social security numbers (unknown)
- Robert Half International reports data breach affecting consumers’ social security numbers (unknown)
- Avamere Health Services announces data breach impacting skilled nursing and senior living employees (unknown)
- DDOS attack hits Lithuania after sanctions feud with Russia (unknown)
- Mason Tenders’ district council confirms data breach (20,000)
- NEworks unavailable due to cyber attack on Geographic Solutions (unknown)
Ransomare
- Yodel becomes the latest victim of a cyber ‘incident’ (unknown)
- Costa Rica’s public health agency hit by Hive ransomware (unknown)
- Italian city of Palermo shuts down all systems in suspected ransomware attack (unknown)
- Goodman Campbell Brain and Spine alerts patients to ransomware attack while continuing to provide care (unknown)
- Shoprite Group issues warning on ‘suspected data compromise’ (unknown)
- Yuma Regional Medical Center notifying patients of ransomware attack (700,000)
- Montrose Environmental Group says ransomware attack took place over weekend (unknown)
- ALPHV threat actors claim to have attacked Plainedge Public Schools (unknown)
- Tenafly Public Schools cancelled finals after ransomware attack (unknown)
- Ransomware attack reported at Council on Aging of Buncombe County (unknown)
- Shutterfly provides notice of ransomware attack to employees (1,400)
- Perkins & Co. announces security breach related to incident at Cloud-hosting company Netgain (354,647)
- Phelps Health notifies patients of MCG Health breach (unknown)
- Hospital San José, Las Palmas De Gran Canaria hit by ransomware (unknown)
- Grand Valley State University hit by ransomware but remains publicly silent (unknown)
- Vice Society claims responsibility for attack on one of Milan’s most important hospital systems (unknown)
- Brooks County pays off hacker with tax dollars after ransomware attack (unknown)
- Artear, the Argentinian multimedia giant, struck by ransomware (unknown)
- Pennsylvania HIM services provider Diskriter hit with ransomware (unknown)
- Fitzgibbon Hospital hit by ransomware, sensitive data leaked (unknown)
- Cyber attack forces Iran steel company to halt production (unknown)
- Ransomware attack caused ongoing Napa Valley College internet and phone system outage (unknown)
- SuperAlloy Industrial Company ignores Hive ransomware demands (unknown)
Data breaches
- Health PEI employees are being notified of a privacy breach after an employee’s laptop was stolen (5,200)
- Pegasus Airlines leaks 6.5TB of personal information of flight crew (23 million)
- Icare sends private details of workers to wrong employers (193,000)
- ACY Securities leaked 60 GB of user data (unknown)
- India’s farmers exposed by new Aadhaar data leak (unknown)
- Confidential record leak leaves CalBar, lawyers, clients exposed (322,500)
- Patient radiology files accidentally exposed online by Yale New Haven Hospital (unknown)
- Personal details of Memorial University of Newfoundland students leaked in email goof (15,000)
- USB devices with personal data of all Amagasaki residents lost (460,000)
- Massive trove of gun owners’ private information leaked by California Attorney General (18,090)
- Misconfigured Kubernetes clusters were found exposed on the Internet (900,000)
- Dripping Springs Independent School District notifies DA of breach (367)
Financial information
- Funds stolen from Floyd County Schools in cyber attack (unknown)
- EMC National Life Company says it was breached (288,288)
- Numrich Gun Parts Corporation suffers cyber attack (45,169)
- Malaysian POS provider StoreHub exposed customer info in data leak (1 million)
- Taco Bell employee in South Carolina accused of credit card, identity fraud (unknown)
- Ameriprise suffers cyber attack (unknown)
- FBI investigating $100 million theft from blockchain company Harmony (unknown)
- Hackers claim to hit Israeli tourism sites (120,000)
Malicious insiders and miscellaneous incidents