Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: In January 2025, stealer logs with 71M email addresses were added to HIBP. Consisting of email address, password and the website the credentials were entered against, this breach marks the launch of a new HIBP feature enabling the retrieval of the specific websites the logs were collected against. The incident also resulted in 106M more passwords being added to the Pwned Passwords service.
January 13th, 2025 (5 months ago)
|
|
|
Description: Path of Exile 2 developers confirmed that a hacked admin account allowed a threat actor to change the password and access at least 66 accounts, finally explaining how PoE 2 accounts have been breached since November. [...]
January 13th, 2025 (5 months ago)
|
|
|
Description: New insights into the Gravy Analytics data breach reveal the vast extent of the company’s location-tracking operations and the potential for user de-anonymization. The leaked data, part of a 10 TB dataset, exposes the granular details of individuals’ movements and raises fresh concerns about the security and ethics of location data collection. Looking into the …
The post Leaked Gravy Analytics Data Expose Scale of Location Tracking appeared first on CyberInsider.
January 13th, 2025 (5 months ago)
|
|
|
Description: Nominet, the official .UK domain registry and one of the largest country code registries, has confirmed that its network was breached two weeks ago using an Ivanti VPN zero-day vulnerability. [...]
January 13th, 2025 (5 months ago)
|
|
|
Description: The Hellcat ransomware group has stolen roughly 5,000 documents, potentially containing confidential information, from the telecom giant's internal database.
January 13th, 2025 (5 months ago)
|
|
|
Description: Six months after a ransomware attack disrupted operations at OneBlood, the not-for-profit blood center has notified affected individuals that their personal data was stolen during the incident. The breach, which occurred between July 14 and July 29, 2024, involved unauthorized access to sensitive information, including names and Social Security numbers. OneBlood, serving critical blood supply …
The post OneBlood Confirms Data Breach Following Ransomware Attack appeared first on CyberInsider.
January 13th, 2025 (5 months ago)
|
|
|
Description: Scholastic, the global educational and publishing giant known for producing popular book series like Harry Potter and Goosebumps, has suffered a significant data breach. The breach exposed sensitive information belonging to over 8 million individuals, with 4.2 million unique email addresses identified. The validity of the leaked data was confirmed by the security incident alerting …
The post Scholastic Data Breach Exposes Info of Over 4 Million Bookworms appeared first on CyberInsider.
January 13th, 2025 (5 months ago)
|
|
|
Description: In January 2025, a data breach of the publishing company Scholastic surfaced. The breach contained 4.2M unique email addresses with many of the records also including name, phone number and physical address.
January 13th, 2025 (5 months ago)
|
|
|
Description: In October 2024, the fantasy sports platform SuperDraft suffered a data breach that exposed over 300k customer records. The breach contained 24GB of data including email addresses, usernames, transactions, latitudes and longitudes, dates of birth and bcrypt password hashes.
January 12th, 2025 (5 months ago)
|
|
|
Description: Spanish telecommunications company Telefónica confirms its internal ticketing system was breached after stolen data was leaked on a hacking forum. [...]
January 10th, 2025 (5 months ago)
|