Vulnerable Disclosures

The purpose of this page is to provide awareness to individuals and organizations that are leaking information and the information of their customers. The entities listed on this site are verified to be leaking personal information sometimes without the company even being aware. SLC Security is now owned and operated by Jigsaw Security Enterprise. We are currently in process and as such this blog will eventually be taken offline and merged with Jigsaw Security resources.

Thursday, May 11, 2017

Huge Uptick in Russian Activity

Over the last two days we have observed a huge uptick in Russian activity. It appears as though we will be seeing more of this. And he...

Friday, May 5, 2017

Motorola being targeted by Hackers

Yes we know it's been awhile but we haven't been hiding, simply busy. While working through our daily routine today we noted tha...

Monday, December 26, 2016

Bitcoin Leaded Data

Searching through our platform we are seeing bitcoin transactions including full credit card numbers. Here is a redacted list of what we are...

IBM of Brazil Credential Exposure

Looking through the Jigsaw Analytics Platform (from Jigsaw Security) we noted today that there was an account being leaked at the br.ibm.com...

Thursday, December 8, 2016

More Retail Breach Details

We are about to release some details on another retail breach. It seems it just keeps getting worse and worse. We are trying to contact thes...

Wednesday, October 26, 2016

What are we tracking today?

Just a little over 20000 infected camera's, routers, Unix embedded operating systems. It's not looking good for the Interwebs a...

Tuesday, September 20, 2016

We Told You So!

I just read a post on databreaches.net that talks about the issues at WakeMed. Remember this is not the first time they have popped up on th...

Tuesday, September 6, 2016

DNC Hacked Over a Year Ago

What they are not telling you in the news is that the DNC was hacked at least as early as December 2015. Looking back through our data we no...

Thursday, August 25, 2016

Represenative Wagner Pennsylvania - Just a quick note

So we started seeing some references to Representative Wagner in PA in dumps today. It was his username and obvious password. Tried to conta...

Monday, June 20, 2016

Deep Diving xDedic Marketplace

First off I would like to thank SecureList for posting the full unredacted IP address information on the servers posted to Pastebin in their...

Monday, June 6, 2016

UPDATED: A look at Guardzilla - They have eyes even when you don't!

Look familiar? Well this device started showing up in all the big box retailers last year so we decided to give one a try. Hooking the devi...

Saturday, June 4, 2016

University of Berkely In Trouble AGAIN

Started seeing reports from the University of Berkeley again this evening. Specifically 169.229.3.91 which has been observed trying to run s...

Tuesday, May 24, 2016

Russia gets the jump with DMA Locker

Over the course of the last few days we have been monitoring the malware known as DMA locker. It appears as though Russia is building some r...

Thursday, February 25, 2016

Cornell University looks the other way

As part of a new initiative to notify users of leaked credentials Jigsaw Security a member of SLC Security notified Cornell of a security is...

Saturday, February 20, 2016

American Museum of Natural History

Looks to us like information from this site has been pulled down by hackers. We are notifying the affected users...

Tuesday, January 19, 2016

Large Numbers of MIT Email accounts leaked

We have noted a large amount of MIT related email accounts showing up on Darknet forums and in leaks posted to Paste sites. The informatio...

Sunday, January 17, 2016

Credit Suisse accounts start appearing online

We started noticing credit-suisse accounts showing up online this evening. Our system that collects information on compromised accounts star...

Wednesday, January 13, 2016

State of Virginia DHRM fails to respond to notification

On 1-7-2016 a researcher that assist Jigsaw Security noted some issues with documents posted on the DHRM website. A PDF posted by this organ...

Friday, January 8, 2016

2 Big Stories Next Week

We are currently reviewing 2 issues both of which are confirmed issues of PII and/or PHI data that we uncovered in the course of reading use...

Monday, December 21, 2015

Walmart Leaked Data Appearing Online

With the holiday season right around the corner we started noting post on forums with a list of usernames and passwords. We have begun notif...

Saturday, December 5, 2015

chaffey.edu Breached

A database containing the personal contact information at chaffey.edu was reported today. It appears through our research that the informati...

Friday, December 4, 2015

WakeMed again in the HIPAA Hot Seat

While I previously have taken down a post at the request of WakeMed I felt that I had to report this one. As reported on WRAL: WRAL in N...

Grace Life Church Compromised

gracelifechurchct.com appears to be distributing malware and appears to have been compromised. Login to the Threat Intelligence portal for m...

Wednesday, October 21, 2015

Trinity College host being used as C2 by credential stealing malware (157.252.245.49)

We notified Trinity College of the issue and have not gotten a response.

Tuesday, September 29, 2015

New Blog Location

Please update your blog location to our new blog .

Tuesday, September 8, 2015

Goodbye Bloggers

As many of you know we have been running this site in a volunteering capacity for awhile now. We have decided to shut down this blog and mov...

Thursday, August 27, 2015

CONFIRMED BREACHED: August Benefits Inc - Attack on SLC Security

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have deci...

Tuesday, August 25, 2015

Alert Posted

A new critical alert was posted for SLC Security clients in regards to a new unknown APT like activity that was detected by the SOC. This ac...

Friday, August 21, 2015

Why did Ashley Madison lie about the data breach initially and who was responsible for the fake torrents that appeared?

So it's been nothing short of an interesting week for Ashley Madison and the information that has come out of the breach. Initially we r...

Wednesday, August 12, 2015

US Government and Military Hacked by ISIS?

Absolutely. It's the same information I posted yesterday. See this article - Click Here Now we have seen information being leaked an...

BREACH: habbo.nl

The system at www.habbo.nl has been compromised and user information has since been posted to several forums. The information on this incide...

SLC Security HIDS Client

SLC Security Services has developed a HIDS client that works with the open source MISP system ( www.misp-project.org ). The platform was des...

Tuesday, August 11, 2015

Large Telecommunications Company Appears to have been Breached

SLC Security researchers have located information indicating that a large telecommunications company servicing Government clients has had a ...

Monday, August 10, 2015

Recent Attackers

Seems these attackers would like to be blocked on 400+ corporations networks. Domain,IP,Subnet,"MX Hostname","MX IP",D...

Sunday, August 9, 2015

OMB Credit Monitoring Failure

It has come to our attention that many of the affected individuals have not been able to sign up for credit monitoring. As part of the CSID ...

Wednesday, August 5, 2015

Are we tired of this already??? - A look at the notorious Inbound Fax Messages

As most of you already know the incoming fax messages that show up in your email are infected. Many admins already block the content (as do ...

Monday, August 3, 2015

AshleyMadison data appearing in the underground

Our researchers have started uncovering large amounts of information possibly from the AshleyMadison breach. We have identified several file...

Thursday, July 23, 2015

Potentially Breached Entities (From Sensor Data) - 7-23-2015 6:44PM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have dec...

Tuesday, July 21, 2015

Potentially Breached Entities (From Sensor Data) - 7-21-2014 11:19PM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have dec...

Wednesday, July 15, 2015

Potentially Breached Entities (From Sensor Data) - 7-15-2014 2:59 (M EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have dec...

Tuesday, July 14, 2015

BREACHED: University of Maryland Serving up CVE-2015-5119??? I sure hope not! - UPDATED

An analyst reported to us today that University of Maryland is serving up exploits from CVE-2015-5119. That's not good but we alerted to...

Potentially Breached Entities (From Sensor Data) - 7-14-2014 1:32 AM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have dec...

Saturday, July 11, 2015

MISP Server Coming Online

With our ongoing integration of the "Jigsaw" IOC platform we wanted to let you know that we are in the process of standing up a pr...

Tuesday, July 7, 2015

Note: Hackedteam MD5 Hashes

There are over 500+ MD5 hashes that have been determined so far in regard to the hacker team (a.k.a Hacked Team) disclosure. We have posted ...

Monday, July 6, 2015

Caltech - What are you guys doing? - California State Polytechnic University - Pomona (CSPUP)

Looks like 134.71.81.34 is having some fun really trying to get into our shared resources without authorization. If you want an account do l...

Potentially Breached Entities (From Sensor Data) - 7-6-2014 2:20 AM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have deci...

Sunday, July 5, 2015

Potentially Breached Entities (From Sensor Data) - 7-5-2014 3:11 AM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have deci...

Saturday, July 4, 2015

Potentially Breached Entities (From Sensor Data) - 7-4-2014 2:21 AM EST

The following host have been detected as being potentially breached based on data from SLC Security owned and operated sensors. We have deci...

Wednesday, July 1, 2015

BREACH: Univ of Michigan 2nd Notification - UPDATED

Pay attention because we are seeing traffic from the Univ of Michigan as well as Horizon's Church in Michigan. They still appear to have...

BREACH: Holiday Inn Express Malvern

This location is breached and has been for awhile... Again don't say we didn't tell ya! Our threat intelligence data shows that they...

Harvard Breach - What did we see? - UPDATED

So it has been reported by news media this evening that Harvard has once again fallen to hackers. Security researcher and advocate databreac...

Monday, June 29, 2015

Botnet Russia (From Russia With Love) - 109.230.131.95

Very interesting port activity on this host as well. May want to look for traffic going to this one... While there appears to be a router on...

PHISHING: Healthcare Related - 86.104.134.156

Looking through recent traffic we noted some very interesting packet data going to 86.104.134.156. We have noted a large amount of healthcar...

Wednesday, June 24, 2015

Hey Harvard do you realize...

Hey Harvard to you realize your sending out millions of infected email messages. Dyre to be exact. Source Host: 140.247.39.51

Tuesday, June 23, 2015

Adobe Zero Day Exploit - One Issue After Another

Adobe Systems Inc . today released an emergency update to fix a dangerous security hole in its widely-installed Flash Player browser plug...

IMPORTANT NOTICE: If your a normal blog subscriber please read

If you would like to continue receiving information on this blog you will need to subscribe to the mailing list (it's free and to your r...

Threat Intelligence Platform is Live

For those of you that have shown an interest you will be receiving a trial of our threat intelligence search platform within the next few we...

Tuesday, June 9, 2015

BREACH: Element Vehicle Management Services

Seeing indications that this entity is breached. Information has been posted to the Internet and is already hitting some underground chat se...

Monday, June 8, 2015

BREACH: army.mil breached by Syrian Electronic Army

Reports have been coming in that the Syrian Electronic Army has breached (www.army.mil) and DOD has put out noticed to staff to not access t...

Thursday, June 4, 2015

BREACH: Shop T Wine

We noted usernames and passwords that could be confirmed being leaked today for the Shop T Wine website. The information first appeared in a...

Wednesday, May 27, 2015

Web Scanning Engine

SLC Security Services LLC has just launched a web scanning engine with capabilities to find similar registered domain names, blacklist check...

Tuesday, May 26, 2015

Disbelief, Legal Threats, Admissions of Guilt... What a week...

So it's been an interesting week at SLC Security. We have been doing many security notifications over the past few weeks and the number ...

Sunday, May 17, 2015

Info: 216.146.38.70 being used by malware to get current IP address

Malware MD5's associated with this dynamic DNS domain checkip.dyndns.com and checkip9.dyndns.com. May 11th 2015, 13:33:04.358 iocs-sl...

Thursday, May 14, 2015

BREACH: mSpy Breached

A company linked to mobile phone spy software has become the victim of hacking. See Kreb's report here .

SLC Security Targeted by Botnet

It goes without saying that the more information we put out there and the more we expose attackers the increase in likelihood that we will b...

View web version

Powered by Blogger.