#data-breach

[ follow ]
Information security
fromThe Verge
2 hours ago

It's time to change your Plex password again

Reset Plex account password immediately; sign out connected devices and enable two-factor authentication because emails, usernames, and hashed passwords were accessed.
fromDataBreaches.Net
15 hours ago

Vietnam's national credit registration and reporting agency hacked; most of the population affected - DataBreaches.Net

Some data breaches make headlines for the number of people affected globally, such as a Facebook scraping incident in 2019 that affected 553 million people worldwide. Then there are breaches that affect a country's entire population or much of it, such as a misconfigured database that exposed almost the entire population of Ecuador in 2019, an insider breach that compromised the information of almost all Israelis in 2006,
Information security
#social-engineering
fromTechCrunch
15 hours ago
Information security

VC giant Insight Partners notifies staff and limited partners after data breach | TechCrunch

fromTechCrunch
15 hours ago
Information security

VC giant Insight Partners notifies staff and limited partners after data breach | TechCrunch

Information security
fromWIRED
2 days ago

ICE Has Spyware Now

Compromised chatbot integrations allowed hackers to export large volumes of corporate Salesforce data, exposing credentials and customer information from hundreds of companies.
#cybersecurity
#cyberattack
fromDataBreaches.Net
1 week ago
Information security

Farmers Insurance says 1 million customers affected by cyberattack on third-party vendor - DataBreaches.Net

Information security
fromDataBreaches.Net
1 week ago

Auchan retailer data breach impacts hundreds of thousands of customers - DataBreaches.Net

Several hundred thousand Auchan customers had sensitive loyalty-account data exposed in a cyberattack; affected customers are being notified.
Information security
fromTheregister
2 weeks ago

TPG Telecom estimates 280K affected by subsidiary breach

A cyberattack on iiNet exposed personal data including about 280,000 active customer email addresses and additional limited customer information.
fromDataBreaches.Net
1 week ago
Information security

Farmers Insurance says 1 million customers affected by cyberattack on third-party vendor - DataBreaches.Net

Business
fromFortune
5 days ago

Don't date at work, don't be a jerk: In our viral age, CEOs should behave like royalty to avoid being fired

CEOs face increasing removal for personal misconduct, prompting stricter expectations for off-duty behavior and internal reporting enforcement.
Privacy professionals
fromDataBreaches.Net
5 days ago

Texas sues PowerSchool over breach compromising info of over 880,000 students, teachers - DataBreaches.Net

A PowerSchool data breach exposed sensitive personal and health information of over 880,000 Texas students and teachers, prompting a lawsuit by the Texas Attorney General.
#salesforce
fromIT Pro
2 weeks ago
Information security

The Allianz Life data breach just took a huge turn for the worse

fromIT Pro
2 weeks ago
Information security

The Allianz Life data breach just took a huge turn for the worse

fromwww.bbc.com
6 days ago

Government unable to calculate Afghan data breach cost, watchdog says

The government is unable to calculate the total cost of a secret relocation plan it set up following the Afghan data leak, the public spending watchdog has said. The Ministry of Defence (MoD) estimates the cost of the massive data breach - and setting up a new scheme to relocate those whose lives might be at risk over it - to be 850m. But the National Audit Office (NAO) says the MoD has not provided enough evidence to give it confidence in that figure, which does not include legal expenses, or compensation claims likely to follow.
UK politics
#ransomware
fromDataBreaches.Net
2 weeks ago
Privacy professionals

When a deal is not a done deal: Nova demands higher payment from Clinical Diagnostics - DataBreaches.Net

fromDataBreaches.Net
2 weeks ago
Privacy professionals

When a deal is not a done deal: Nova demands higher payment from Clinical Diagnostics - DataBreaches.Net

fromTheregister
6 days ago

How big a Drift? Cloudflare cops to Salesloft Drift breach

Because of this breach, someone outside Cloudflare got access to our Salesforce instance, which we use for customer support and internal customer case management, and some of the data it contains,
Information security
Information security
fromArs Technica
6 days ago

Google says Gmail security is "strong and effective" as it denies major breach

Gmail's security remains strong; claimed mass breach was mistaken—only a corporate Salesforce server leak exposed public business contact data and phishing attacks increased.
Information security
fromIT Pro
6 days ago

The Salesloft Drift victim list keeps growing: Zscaler is the latest to confirm a breach, warning customers to remain wary of follow-up phishing attacks

Zscaler experienced a Salesforce data exposure after Salesloft Drift OAuth token theft, allowing limited access to contact details and Salesforce-related commercial information.
World news
fromDataBreaches.Net
6 days ago

Watchdog orders Lotte Card to compensate victims of hack - DataBreaches.Net

Lotte Card must set up a dedicated call center and prepare full reimbursement procedures after a cyber breach affecting 9.65 million customers.
Artificial intelligence
fromTheregister
1 week ago

China launches new 'AI+' policy to speed 'info revolution'

China's new AI+ policy aims to shift from connectivity to knowledge creation while promoting cautious AI adoption and stronger monitoring to manage security and social risks.
Information security
fromDataBreaches.Net
1 week ago

Massachusetts AG Secures $795,000 Settlement for Alleged Data Security and Breach Notification Failures by Peabody Properties Inc. - DataBreaches.Net

Property manager settled for $795,000 after repeated phishing breaches, delayed notifications, and must implement significant cybersecurity upgrades and monitoring.
#transunion
fromZDNET
1 week ago
Information security

Massive TransUnion breach leaks personal data of 4.4 million customers - what to do now

fromIT Pro
1 week ago
Information security

4.5 million people just had their data exposed in the TransUnion breach - here's what customers need to know

fromZDNET
1 week ago
Information security

Massive TransUnion breach leaks personal data of 4.4 million customers - what to do now

fromIT Pro
1 week ago
Information security

4.5 million people just had their data exposed in the TransUnion breach - here's what customers need to know

#cervical-cancer-screening
fromTheregister
1 week ago

UK government dragged for incomplete security reforms

It examined 11 major UK data breaches between 2008 and 2023, including the Ministry of Defence's (MoD) dangerous email blunder that exposed the details of Afghans who worked with British forces during the conflict with the Taliban, as well as British troops and spies. The others included a similar email mistake made by the Police Service of Northern Ireland, Norfolk and Suffolk police forces, Digital ID, another MoD leak of data to Malian recipients instead of US military (.ml/.mil), and more in the public sector.
UK politics
UK politics
fromwww.theguardian.com
1 week ago

Government faces questions after review of 11 major UK data breaches

Government implemented 12 of 14 recommendations after multiple public sector data breaches, but delays and secrecy have undermined public trust and endangered affected individuals.
Information security
fromTheregister
1 week ago

SK Telecom walloped with $97M fine after schoolkid security

SK Telecom left its network unsecured, enabling hackers to steal USIM data of about 23 million subscribers and prompting a record ₩134.5 billion fine.
Privacy professionals
fromDataBreaches.Net
1 week ago

South Korea fines SK Telecom US$97M over data breach - DataBreaches.Net

SK Telecom fined 134.8 billion won for weak security and late reporting after a USIM data breach exposed nearly half of South Koreans' details.
Information security
fromSecuritymagazine
1 week ago

1.1M Impacted by Farmers Insurance Data Breach, Security Leaders Discuss

Farmers Insurance suffered a third-party breach of ~1.1 million customers' PII—names, addresses, birthdates, driver’s license numbers, last four SSNs—possibly tied to Salesforce social engineering.
fromTheregister
1 week ago

Church of England abuse victims exposed by lawyer's email

We have contacted everyone who received the message and have reported the incident to the Charity Commission, the Information Commissioner's Office and the Solicitor's Regulatory Authority. We will fully comply with any investigations. We understand the significant impact this will have on those affected for which we apologise unreservedly. We remain committed to supporting victims and survivors of Church of England-related abuse to secure the financial redress, therapeutic, spiritual and emotional support, acknowledgement of wrongdoing on the part of the Church, apology and other forms of bespoke redress under this scheme.
UK news
Information security
fromwww.bbc.com
1 week ago

MoD staff warned not to share hidden data before Afghan leak

MoD staff were warned not to share data containing hidden spreadsheet tabs before a 2022 leak that exposed details of nearly 19,000 asylum applicants.
#church-of-england
Information security
fromZDNET
1 week ago

1.1M insurance customers were exposed in a data breach - here's what to know

A Farmers Insurance data breach exposed sensitive personal information of about 1.1 million customers.
#social-security
fromTechCrunch
1 week ago
Information security

DOGE uploaded live copy of Social Security database to 'vulnerable' cloud server, says whistleblower | TechCrunch

fromTechCrunch
1 week ago
Information security

DOGE uploaded live copy of Social Security database to 'vulnerable' cloud server, says whistleblower | TechCrunch

fromwww.theguardian.com
1 week ago

Elon Musk's Doge put sensitive social security data at risk, whistleblower says

The complaint from Charles Borges, the chief data officer at the SSA, alleges that Doge staffers effectively created a live copy of the entire country's social security data from its numerical identification system database. The information is a goldmine for bad actors, the complaint alleges, and was placed on a server without independent oversight that only Doge officials could access.
US politics
fromAbove the Law
1 week ago

Senator Asks Chief Justice To Give A Damn About Cybersecurity - Above the Law

U.S. Senator Ron Wyden on Monday asked Chief U.S. Supreme Court Justice John Roberts to commission an independent review of the federal judiciary's cybersecurity practices, following a major hack of the court system's electronic case management system. Wyden, a Democrat from Oregon, in a letter to Roberts said the recent breach of the federal judiciary's filing system marked the second time since 2020 it had been hacked by foreign actors exploiting the same cyber vulnerabilities.
US politics
fromTheregister
1 week ago

1.1M Farmers Insurance customers snared in breach

US insurance giant Farmers Insurance says more than a million customers had personal data nicked after a third-party vendor was compromised. The insurer, which sells car, home, life, and business cover to more than 10 million Americans, briefly published an advisory on its website confirming the breach before quietly pulling it offline [PDF]. Farmers isn't saying why, but companies sometimes retract notices to tweak wording or to coordinate with regulators.
Information security
fromwww.bbc.com
2 weeks ago

My ex stalked me, so I joined a 'dating safety' app. Then my address was leaked

When she finally got back on to the dating scene, she was wary. She decided to sign up for a new app where women could do background checks and share experiences of men they were dating. Users of the US-based Tea Dating Advice app, which is only available in America, could flag if potential partners were married or registered sex offenders. They could run reverse image searches to check against people using fake identities.
Privacy professionals
Information security
fromTheregister
2 weeks ago

Criminal background checker APCS faces data breach

Access Personal Checking Services customer data was compromised via a cyberattack on third-party developer Intradev; investigation and containment are underway.
fromTheregister
2 weeks ago

Orange Belgium's 850K mega-breach raises fraud fears

The association between the SIM ID, phone numbers, and real names is worrying and could enable very targeted frauds, such as phishing attacks addressing people by name or to re-associate phone numbers with a real person.
Information security
Information security
fromTechzine Global
2 weeks ago

Colt now admits scale of attack as perpetrators auction off data

Colt Technology Services confirmed customer data theft after initial denial; services remain disrupted while hacker group Warlock auctions the stolen data.
Cannabis
fromDataBreaches.Net
2 weeks ago

UK Cannabis Clinic CB1 Medical Investigating As Patients Affected By Major Data Leak - DataBreaches.Net

CB1 Medical experienced a data breach exposing patients' personal and prescription details on a file-hosting site, prompting removal and investigation without evidence of wider misuse.
Privacy professionals
fromWIRED
2 weeks ago

Highly Sensitive Medical Cannabis Patient Data Exposed by Unsecured Database

A significant data breach compromised sensitive health information of nearly a million medical cannabis patients in Ohio.
fromThe Hacker News
2 weeks ago

Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution

The existence of the exploit was first reported last week by vx-underground, which said it was released by Scattered Lapsus$ Hunters, a new fluid alliance formed by Scattered Spider and ShinyHunters.
Information security
Privacy professionals
fromDataBreaches.Net
2 weeks ago

Two agencies in one state investigated and fined Healthplex. Was that one too many? - DataBreaches.Net

Healthplex faced a $400,000 penalty for security failures despite acting quickly to mitigate a phishing attack.
Privacy professionals
fromDataBreaches.Net
2 weeks ago

HHS OCR Settles HIPAA Ransomware Security Rule Investigation with BST & Co. CPAs, LLP - DataBreaches.Net

BST & Co. CPAs settled charges for violating HIPAA Security Rule following a ransomware attack exposing patient health information.
US news
fromDataBreaches.Net
3 weeks ago

Microsoft's Nuance coughs up $8.5M to rid itself of MOVEit breach suit - DataBreaches.Net

Nuance has settled a class action lawsuit for $8.5 million over the MOVEit Transfer breach, admitting no liability.
fromIT Pro
3 weeks ago

Everything we know about the Workday data breach so far

We recently identified that Workday had been targeted and threat actors were able to access some information from our third-party CRM platform.
Information security
fromTechRadar
3 weeks ago

When the insider Is the adversary: North Korea's remote work espionage campaign

The campaign is one of the most aggressive, large-scale examples of an insider threat, where individuals abuse authorized access to cause harm.
Privacy professionals
US politics
fromFuturism
3 weeks ago

ICE Agents Accidentally Add Random Person to Group Chat, Uncover Highly Sensitive Data

ICE agents mistakenly included a random person in a group text containing sensitive information about arrests and deportation strategies.
Privacy professionals
fromDataBreaches.Net
3 weeks ago

Data breach at Fundamental Administrative Services affected 56,235 patients at long-term care facilities - DataBreaches.Net

Fundamental Administrative Services reported a breach affecting 56,325 patients due to unauthorized network access.
Education
fromDataBreaches.Net
3 weeks ago

Kokomo24/7, provider of telehealth services for LAUSD students, reports data breach - DataBreaches.Net

Kokomo Solutions experienced a data breach affecting personal information of LAUSD students, noticed initially on December 11, 2024.
UK news
fromDataBreaches.Net
3 weeks ago

Thousands more Afghans affected by second data breach, ministers say - DataBreaches.Net

A data breach involving a subcontractor has compromised sensitive information of up to 3,700 Afghan individuals in the UK.
fromwww.bbc.com
3 weeks ago

Afghans resettled in UK hit by new data breach

Thousands of Afghans brought to safety in the UK have had their personal data exposed due to a data breach caused by a Ministry of Defence sub-contractor.
Privacy professionals
fromwww.independent.co.uk
3 weeks ago

Former Afghan interpreter exposed in huge MoD data breach has UK relocation revoked

A former Afghan interpreter exposed in a catastrophic Ministry of Defence (MoD) data breach has had his offer of relocation to the UK revoked despite waiting for two years in Pakistan.
US politics
fromTechzine Global
4 weeks ago

Data breach affects Dutch 485,000 cervical cancer screening participants

"We are deeply shocked by this data breach," said Elza den Hertog, chair of the Executive Board. "Participating in the cervical cancer screening program is already stressful enough for many women. And now they are being told that their personal data may have been leaked."
Privacy technologies
fromTechzine Global
4 weeks ago

More details revealed about Salesforce leak at Google

The incident involved unauthorized access to a limited set of data from a Google business Salesforce instance including company names, phone numbers, and internal notes.
Privacy professionals
fromIndependent
4 weeks ago

Workers warned of risks of storing personal data on work devices after HSE employee lost challenge over stolen cryptocurrency

Eamon McShane claimed a loss of €1,400 due to a cyber attack related to his work phone. He lost a court challenge over this claim.
Privacy professionals
[ Load more ]