New sensitive breach: The 2nd wave of Operation Endgame to disrupt criminal ransomware infrastructure has resulted in 15.4M email addresses and 43.8M passwords being provided to HIBP by law enforcement agencies. 83% were already in @npub1rqsm...83hv. More:
Europol
Operation ENDGAME strikes again: the ransomware kill chain broken at its source | Europol
Cybercriminals around the world have suffered a major disruption after law enforcement and judicial authorities, coordinated by Europol and Eurojus...
New breach: Fédération Francaise de Rugby had 282k email addresses breached in June 2023. Data also included name, DoB and phone number. 69% were already in @npub1rqsm...83hv. Read more:
Le Monde.fr
Des pirates informatiques tentent de faire chanter la Fédération française de rugby
Un groupe de pirates menace de publier des documents récupérés dans une attaque ayant eu lieu au début du mois. La FFR assure avoir rétabli l...
New breach: OnRPG had 1M email addresses breached in 2016. Data also included IP address, username and salted MD5 password hash. 86% were already in @npub1rqsm...83hv. Read more: https://cybernews.com/security/billions-passwords-credentials-leaked-mother-of-all-breaches/
New breach: Hungarian education office website TehetségKapu had almost 55k records breached in March. Data included email address, name and username. 32% were already in @npub1rqsm...83hv. Read more:
444
55 ezer személyes adat, magyar diákok, tanárok és az Oktatási Hivatal dolgozóinak információi szivároghattak ki
Az iskolai kompetenciamérést is lebonyolító Tehetségkapu nevű rendszerhez fértek hozzá a hackerek és nyilvánosságra hozták, amit elloptak.
New breach: Samsung Germany had 216k unique email addresses exposed due to a compromise of their logistics provider, Spectos. Data included name, physical address, purchases and shipping tracking numbers. 49% were already in @npub1rqsm...83hv. Read more:
InfoStealers
Samsung Tickets Data Leak: Infostealers Strike Again in Massive Free Dump
Another colossal breach fueled by infostealer malware, and this time, it’s Samsung in the crosshairs.
New breach: Indonesian restaurant website Qraved had almost 1M email addresses breached in 2021. Data also included name, phone, DoB and MD5 password hash. 83% were already in @npub1rqsm...83hv. Read more: https://cybernews.com/security/billions-passwords-credentials-leaked-mother-of-all-breaches/
New breach: French electronics retailer Boulanger had 967k email addresses breached in September. Data also included name, physical address, phone number and lat and long. 65% were already in @npub1rqsm...83hv. Read more:
Popular French retailers confirm hackers stole customer data
Targets of the cyberattacks include electronics and home appliances store Boulanger and the retailer Cultura.
New breach: German Doner Kebab had 162k unique email addresses publicly posted to a hacking forum last week. Data also included name, phone and physical addrress. 74% were already in @npub1rqsm...83hv. Read more:
X (formerly Twitter)
Dark Web Informer (@DarkWebInformer) on X
🚨Alleged database leak of German Doner Kebab (GDK) Data reportedly includes: Customer names, dates of birth, email addresses, mobile phone numb...
New breach: Troy Hunt's Mailchimp account was successfully phished and a subscriber list for his personal blog was exported. Data included 16k email and IP addresses, plus derived lat long and time zone. 75% were already in @npub1rqsm...83hv. Read more:
Troy Hunt
A Sneaky Phish Just Grabbed my Mailchimp Mailing List
You know when you're really jet lagged and really tired and the cogs in your head are just moving that little bit too slow? That's me right now, an...
New sensitive breach: Spyware maker SpyX had almost 2M email addresses breached in June. The data also included IP address, country and what appears to be plain text iCloud credentials. 40% were already in @npub1rqsm...83hv. Read more:
TechCrunch
Exclusive: Data breach at stalkerware SpyX affects close to 2 million, including thousands of Apple users
Another consumer-grade spyware operation was hacked in June 2024, which exposed thousands of Apple Account credentials.