data breach

A popular AI-powered children's toy, Bondu, had a severe security flaw that exposed tens of thousands of children's private conversations…

A major data breach at Match Group, parent company of Hinge, Tinder, and OkCupid, was caused by a phishing attack…

A massive, unprotected database containing 149 million usernames and passwords was discovered, exposing credentials for major email, social media, financial,…

A massive, publicly accessible database containing nearly 149 million stolen login credentials—including 48 million for Gmail—was discovered and taken offline,…

The Kyowon Group, a major South Korean conglomerate, suffered a ransomware attack in January that disrupted services and led to…

An unauthorized party breached a Victorian Department of Education database, accessing student names, school details, and email addresses, but not…

A major cybersecurity breach at Central Maine Healthcare compromised the personal and medical data of over 145,000 patients and employees,…

A ransomware attack on the University of Hawaii Cancer Center in August 2025 compromised decades-old research files, including historical Social…

Instagram resolved a software bug that allowed unauthorized password reset requests, but denies any internal data breach occurred. A dataset…

Meta denied a system breach, attributing a wave of password reset emails to an external party exploiting a technical flaw…

A major data breach affecting around 50 global companies was enabled by the lack of multi-factor authentication (MFA), allowing an…

A data breach at Sedgwick Government Solutions exposed sensitive information from over twenty federal agency clients, including CISA, DHS, and…

The New Zealand government has launched a formal review after a major cybersecurity breach at the Manage My Health patient…

A critical, high-severity vulnerability (CVE-2025-14847) in MongoDB, dubbed MongoBleed, is being actively exploited, allowing unauthenticated attackers to remotely steal secrets…

A data breach at Baker University compromised the sensitive personal information of over 53,000 individuals, including Social Security numbers, financial…

Despite fewer major law enforcement takedowns, ransomware threats intensified, with a dramatic surge in publicly claimed victims indicating a shift…

The Clop ransomware gang is actively targeting businesses using Gladinet CentreStack file-sharing servers by exploiting an unidentified vulnerability to steal…

French authorities arrested a 22-year-old suspect on December 17, 2025, for allegedly breaching the Ministry of the Interior's systems as…

A sophisticated cyberattack compromised the French Ministry of the Interior, extracting sensitive police files like the Judicial Records (TAJ) and…

A Home Depot employee accidentally exposed a private access token online for nearly a year, granting extensive privileges to internal…