Topic: customer information
-
Freedom Mobile Data Breach Exposes Customer Information
Freedom Mobile suffered a data breach where attackers used a compromised third-party subcontractor account to access its customer management system and steal personal information. The exposed data includes sensitive details like full names, addresses, and phone numbers, prompting the company to a...
Read More » -
Nissan Data Breach: Thousands Affected by Red Hat Hack
A data breach at software firm Red Hat compromised a server, exposing the personal information of approximately 21,000 Nissan customers in Japan, though no financial data was stolen. Nissan states there is no evidence of fraudulent misuse of the data, but the breach is part of a larger cyberattac...
Read More » -
Petco's Vetco Website Breach Exposes Customer Data
A major security lapse on Petco's Vetco Clinics website exposed extensive personal customer and pet data, including medical histories and owner signatures, due to an unprotected PDF-generating page. The vulnerability was an insecure direct object reference (IDOR) flaw, allowing unauthorized acces...
Read More » -
Coupang Data Breach Exposes 33.7 Million Customers
A massive data breach at South Korea's Coupang compromised the personal details of an estimated 33.7 million customers, with the intrusion occurring in June 2025 but not being detected until nearly five months later. The exposed data includes names, contact information, and order history, but not...
Read More » -
Iberia customer data leaked in vendor security breach
Iberia has disclosed a data security incident originating from a compromised external supplier, potentially exposing customer names, email addresses, and loyalty card IDs, but not login credentials or payment details. The airline has implemented security protocols, added safeguards like email ver...
Read More » -
DoorDash Data Breach: Customer Information Exposed
DoorDash experienced a data breach in October 2025, compromising customer names, phone numbers, email addresses, and delivery locations, but sensitive data like financial details and Social Security numbers were not accessed. The breach resulted from a social engineering attack on an employee, pr...
Read More » -
Wealthsimple Data Breach: Supply Chain Attack Exposes User Info
A data breach at Wealthsimple compromised sensitive client information due to a supply chain attack, but no account passwords or funds were accessed. Exposed data includes contact details, government IDs, Social Insurance Numbers, dates of birth, IP addresses, and account numbers, with affected c...
Read More » -
TransUnion Data Breach Exposes 4.4 Million Customers' Personal Info
TransUnion experienced a data breach affecting 4.4 million customers, caused by unauthorized access to a third-party application used for consumer support. While the company claims no credit information was compromised, it has not provided evidence or clarified what personal data was exposed, rai...
Read More » -
Betterment Data Breach Exposed in Fake Crypto Scam Alert
A social engineering attack on third-party platforms allowed hackers to breach Betterment's internal systems, compromising sensitive customer data like names, addresses, and dates of birth. The attackers used the stolen information to send a fraudulent cryptocurrency scam message, but Betterment ...
Read More » -
Tata Motors Patches Security Flaws That Exposed Customer Data
A security researcher discovered and reported critical vulnerabilities in Tata Motors' E-Dukaan portal, including exposed AWS private keys that could access sensitive customer and corporate data. The breach risked exposing extensive information such as customer invoices with personal details, MyS...
Read More » -
Discord Data Breach Exposed in Third-Party Hack
Discord experienced a security breach through a third-party customer service provider, exposing sensitive user data in a ransomware attack. Compromised information includes user names, email addresses, partial billing details, support messages, and some government ID images, but passwords and ful...
Read More » -
Stellantis Confirms Customer Data Stolen in Cyberattack
Stellantis, the parent company of Chrysler, Jeep, Dodge, and Ram, confirmed a data breach affecting North American customers, caused by unauthorized access through a third-party customer service platform. The breach compromised customer contact information, with the hacking group ShinyHunters cla...
Read More » -
Zscaler Breach: Customer Data Exposed via Third-Party Hack
A security breach at Zscaler exposed customer data via a compromised third-party AI chat agent, Salesloft Drift, which allowed attackers to access sensitive records in the company's Salesforce environment. The compromised information includes names, email addresses, job titles, phone numbers, reg...
Read More »