Have I Been Pwned says a data breach at convenience store chain 7-Eleven affects over 185,000 people, including their names, dates of birth, and physical addresses. The data breach, reported in April, also included phone numbers and email addresses.
However, on May 20, 2026, Kroll, who is the third-party administrator for the Vendor, notified [TOI] that the Vendor had detected unauthorized access by a third party to certain information systems of [TOI], including systems affecting data of patients,
We demand a briefing as soon as possible on how this serious security lapse occurred, any potential security consequences, remediation activities, corrective actions related to the contractor personnel involved, and efforts to monitor for and prevent similar activity from occurring in the future, wrote Rep. Bennie Thompson of Mississippi, the committee's ranking member, and Rep. Delia Ramirez of Illinois, the ranking member of the panel's cyber subcommittee, in a Tuesday letter shared with Nextgov/FCW.
I know that because sadly I am one of those customers whose mailing address, email address, you know, everything short of credit card number is being leaked. "Do not order on trumpmobile.com unless you're ready for your information to be leaked. It's basically that bad."
7-Eleven has started sending out security incident notices revealing that an intrusion into 7-Eleven systems used to store franchisee documents was detected on April 8. According to a notification submitted to the Maine Attorney General's Office, unspecified personal information has been compromised. The exposed information was provided to the company during franchise applications.
Members of the Public and Commercial Services (PCS) union will gather outside Capita's AGM at Sheldon Square, London, from 9:45am on May 18 to demand that the government strips the outsourcer of responsibility for administering civil service pensions after months of delays, botched portal launches, missing payments, bereavement failures, and a data breach that exposed members' personal information.
Emails sent to customers affected by the data breach reveal that the intrusion was discovered on April 22, and an investigation showed that threat actors had access since October 14, 2025.
Current evidence indicates that this data originated from Checkmarx's GitHub repositories, and that access to those repositories was facilitated through the initial supply chain attack of March 23, 2023.
