Topic: data breach
-
1.2 Million French Bank Accounts Exposed in Data Breach
A data breach at France's national bank account registry (FICOBA) exposed the personal and banking details of 1.2 million citizens after an attacker used a civil servant's stolen credentials. The exposed data, including IBANs and addresses, poses significant fraud risks, such as unauthorized dire...
Read More » -
Figure Data Breach Exposes 1 Million Accounts
A major data breach at Figure Technology Solutions, caused by a sophisticated social engineering attack, compromised the personal information of nearly one million individuals, including sensitive customer data like addresses and dates of birth. The ShinyHunters extortion group claimed responsibi...
Read More » -
Millions of Dutch Telco Users Hit by Odido Data Breach
Odido, the Netherlands' leading mobile operator, disclosed a data breach where an unauthorized party accessed a customer contact system, compromising personal details like names, addresses, and for some, passport or driver's license numbers, but not sensitive passwords or billing data. The breach...
Read More » -
Figure Data Breach Exposes Fintech Lending Giant
Figure Technology suffered a data breach due to a social engineering attack, where hackers accessed sensitive customer files, and the company is offering credit monitoring to affected individuals. The ShinyHunters hacking group claimed responsibility, stating they released about 2.5 GB of stolen ...
Read More » -
Odido Data Breach: 6.2 Million Customers' Info Exposed
Dutch telecom provider Odido suffered a major cyberattack, with unauthorized access to its customer contact system compromising personal data for millions of customers. The breach impacted approximately 6.2 million customers, potentially exposing sensitive details like names, addresses, phone num...
Read More » -
Volvo Customer Data Breached in Conduent Hack
A data breach at Conduent, a third-party vendor for Volvo Group North America, compromised sensitive personal information, including Social Security numbers and medical records, for thousands of individuals between late 2024 and early 2025. The breach exposed data for nearly 17,000 customers and ...
Read More » -
Substack Confirms Data Breach Exposing User Information
Substack experienced a security breach where an unauthorized party accessed limited user data, including email addresses and phone numbers, in October 2025, but the company only detected and disclosed it in February. The company confirmed that no financial information or passwords were compromise...
Read More » -
Betterment Data Breach: 1.4 Million Accounts Exposed
A social engineering attack at Betterment, a major robo-advisor, exposed personal data of over 1.4 million accounts, including email addresses, names, and geographic information. Following the breach, attackers sent fraudulent emails promoting a cryptocurrency scam, but customer account credentia...
Read More » -
Conduent Data Breach Expands, Impacting Millions of Americans
The scale of a major data breach at government contractor Conduent has grown dramatically, now potentially impacting tens of millions of Americans across multiple states, with Texas and Oregon alone accounting for tens of millions of affected residents. The compromised data is exceptionally sensi...
Read More » -
AI Toy Chat Exposed: Kids' Data Leaked via Gmail
A popular AI-powered children's toy, Bondu, had a severe security flaw that exposed tens of thousands of children's private conversations and personal data through a simple login vulnerability in its web portal. The exposed data included highly sensitive information like full names, birth dates, ...
Read More » -
France's Employment Agency Hit With €5M Fine for Data Breach
France Travail, the national employment agency, was fined €5 million by the CNIL for GDPR violations after a cybersecurity breach exposed the personal data of approximately 43 million individuals. The investigation found critical security failures, including inadequate technical protections, insu...
Read More » -
48 Million Gmail Credentials Leaked Online
A database containing nearly 149 million login credentials, including an estimated 48 million Gmail accounts, was exposed online, compiled from past breaches and infostealer malware. The primary risk is credential stuffing attacks, where stolen usernames and passwords are used to access other acc...
Read More » -
Under Armour Confirms Data Breach Investigation
Under Armour is investigating a major alleged data breach, with a cybercriminal group claiming to have leaked 72 million customer records containing personal and purchase information. The company, working with cybersecurity experts, disputes the scale and nature of the leak, stating there is no e...
Read More » -
CIRO Data Breach Exposes 750,000 Canadian Investors
A cybersecurity breach at the Canadian Investment Regulatory Organization (CIRO) has compromised the personal data of approximately 750,000 Canadian investors, with the full scope only recently determined after an investigation launched in August. The exposed data is highly sensitive, potentially...
Read More » -
Grubhub Data Breach: Hackers Stole Customer Information
Grubhub has confirmed a data breach, contained the incident, and is working with experts, but has not disclosed specifics about compromised customer data or potential extortion. The attack is attributed to the ShinyHunters group, which is demanding a Bitcoin ransom to prevent the release of data ...
Read More » -
Eurail and Interrail Traveler Data Breached
Eurail B.V. experienced a data breach exposing personal details, including passport/ID numbers, of customers who purchased train passes or reservations. The breach also compromised sensitive financial and health data for participants in the EU's DiscoverEU program, heightening risks of identity t...
Read More » -
Student Data Stolen in Victorian Education Dept Hack
An unauthorized party breached a Victorian Department of Education database, accessing student names, school details, and email addresses, but not more sensitive data like birth dates or home addresses. As a precaution, all student account passwords have been reset, with priority given to VCE stu...
Read More » -
Data Breach at Central Maine Healthcare Impacts 145,000+
A major cybersecurity breach at Central Maine Healthcare compromised the personal and medical data of over 145,000 patients and employees, with hackers having undetected access to systems for over two months in early 2023. The exposed data is highly sensitive, including Social Security numbers, h...
Read More » -
Endesa Data Breach Exposes Customer Information
A major data breach at Spain's energy provider Endesa compromised sensitive customer information, including personal identification, contract details, and payment data, affecting millions across Spain and Portugal. Endesa responded by blocking the compromised accounts, notifying authorities and c...
Read More » -
BreachForums Database Leak Exposes 324,000 User Accounts
A major data breach of the BreachForums cybercrime platform exposed over 324,000 member accounts, including usernames and some public IP addresses, posing a significant security risk to its users and providing intelligence for authorities. The leak, published by a site named after the ShinyHunter...
Read More » -
Data Breach Exposes 700K Illinois Human Services Clients
A data breach at the Illinois Department of Human Services exposed sensitive information of nearly 700,000 residents due to publicly accessible maps with incorrect privacy settings. The exposed data included addresses and case numbers for Medicaid recipients, while a smaller group also had full n...
Read More » -
New Zealand Launches Probe Into Manage My Health Data Breach
The New Zealand government has launched a formal review after a major cybersecurity breach at the Manage My Health patient portal, which potentially exposed the data of over 100,000 individuals following a ransom demand. The review will examine the immediate breach and the broader security implic...
Read More » -
Covenant Health Data Breach Affects 478,000 Patients
The data breach at Covenant Health was far more extensive than first thought, compromising the personal and medical information of nearly 478,000 individuals. The incident was a ransomware attack claimed by the Qilin group, which stole hundreds of gigabytes of sensitive data and posted it online....
Read More » -
Korean Air Data Breach: Thousands of Employee Records Exposed
The data breach originated at Korean Air's former subsidiary and current supplier, KC&D, compromising employee names and bank account numbers from its ERP system, with reports indicating around 30,000 records were affected. Korean Air has reported the incident, warned employees to be vigilant aga...
Read More » -
Condé Nast Data Breach Exposed, Ars Remains Secure
A hacker leaked over 2.3 million user records from WIRED, exposing personal details like names and email addresses, and plans to release 40 million more records from other Condé Nast publications. The hacker's claimed motive of improving security is disputed, with cybersecurity reports suggesting...
Read More » -
Baker University Data Breach Exposes 53,000 People in 2024
A data breach at Baker University compromised the sensitive personal information of over 53,000 individuals, including Social Security numbers, financial details, and medical records. The university discovered unauthorized network access in December 2024 and is offering credit monitoring, but has...
Read More » -
Nissan Data Breach: Thousands Affected by Red Hat Hack
A data breach at software firm Red Hat compromised a server, exposing the personal information of approximately 21,000 Nissan customers in Japan, though no financial data was stolen. Nissan states there is no evidence of fraudulent misuse of the data, but the breach is part of a larger cyberattac...
Read More » -
Clop Ransomware Claims Massive 3.5M University of Phoenix Breach
A data breach at the University of Phoenix compromised approximately 3.5 million people, with attackers stealing highly sensitive personal and financial information, including Social Security and bank account numbers. The breach was part of a widespread campaign by the Clop ransomware gang, which...
Read More » -
University of Phoenix Data Breach Exposes 3.5 Million
A data breach at the University of Phoenix compromised the sensitive personal and financial information of approximately 3.5 million individuals, including students, employees, and suppliers. The attack was executed by the Clop ransomware gang, which exploited a zero-day vulnerability in the univ...
Read More » -
University of Sydney Data Breach Exposes Student, Staff Info
Hackers breached a University of Sydney code repository, compromising the personal data of over 27,000 current and former students and staff. The stolen information includes sensitive details like names, addresses, and employment records, but there is no evidence of its publication or misuse yet....
Read More » -
Credit700 Data Breach Impacts Millions of Car Owners
A major data breach at automotive finance company 700Credit compromised sensitive personal information, including Social Security numbers, for approximately 5.8 million U.S. car buyers. The breach, discovered in October, resulted from a misconfigured API that allowed unauthorized data access and ...
Read More » -
5.8M Customers Hit in 700Credit Dealership Data Breach
A data breach at 700Credit exposed sensitive personal information of approximately 5.8 million individuals, stemming from a security failure at an integration partner that was not promptly reported. The vulnerability was a poorly designed API that allowed unauthorized access and exfiltration of d...
Read More » -
5.6 Million Exposed in 700Credit Data Breach
A major data breach at 700Credit, a credit verification service for auto dealerships, exposed sensitive personal data including Social Security numbers for at least 5.6 million individuals. The breach occurred over a five-month period in 2025, and the company is notifying affected people by mail ...
Read More » -
Coupang CEO Resigns Amid Police Raid Over Data Breach
Coupang's CEO resigned after a massive data breach affecting 33.7 million users, far more than initially reported, and publicly accepted responsibility for the incident and its handling. South Korean police raided Coupang's headquarters and are investigating a former employee, while U.S.-based pa...
Read More » -
UK Slaps LastPass With Fine for 2022 Data Breach Affecting Millions
The UK's Information Commissioner's Office fined LastPass £1.2 million for failing to protect the personal data of up to 1.6 million users during a 2022 breach, where encrypted password vaults were stolen. The breach occurred in stages, starting with a compromised employee laptop and escalating w...
Read More » -
Petco's Vetco Website Breach Exposes Customer Data
A major security lapse on Petco's Vetco Clinics website exposed extensive personal customer and pet data, including medical histories and owner signatures, due to an unprotected PDF-generating page. The vulnerability was an insecure direct object reference (IDOR) flaw, allowing unauthorized acces...
Read More » -
Marquis Data Breach Exposes 74+ US Banks and Credit Unions
A ransomware attack on Marquis Software Solutions in August 2025 compromised sensitive personal data, including Social Security and financial account information, for over 400,000 individuals across more than 74 U.S. banks and credit unions. The breach occurred via a compromised SonicWall firewal...
Read More » -
Freedom Mobile Data Breach Exposes Customer Information
Freedom Mobile suffered a data breach where attackers used a compromised third-party subcontractor account to access its customer management system and steal personal information. The exposed data includes sensitive details like full names, addresses, and phone numbers, prompting the company to a...
Read More » -
Coupang Data Breach Exposes 33.7 Million Customers
A massive data breach at South Korea's Coupang compromised the personal details of an estimated 33.7 million customers, with the intrusion occurring in June 2025 but not being detected until nearly five months later. The exposed data includes names, contact information, and order history, but not...
Read More » -
French Football Federation Hit by Cyberattack, Data Breached
The French Football Federation experienced a cybersecurity breach where attackers accessed its administrative software by compromising a user account, leading to a system-wide password reset. Personal data including names, addresses, and contact details of club members was stolen, but no financia...
Read More » -
Hackers Stole Data From 200 Companies in Google-Linked Breach
A major supply chain attack compromised data from over 200 organizations, with Google confirming theft from Salesforce instances through Gainsight applications, highlighting risks in interconnected digital ecosystems. The hacking group Scattered Lapsus$ Hunters claimed responsibility, targeting c...
Read More » -
French Agency Pajemploi Data Breach Exposes 1.2 Million Users
A data breach at France's Pajemploi platform has compromised the personal information of 1.2 million users, primarily affecting professional caregivers and their employers using the URSSAF-managed service. Exposed data includes names, social security numbers, and banking institution details, but ...
Read More » -
Princeton University Data Breach Exposes Donor, Alumni Info
A sophisticated phishing attack on a Princeton University employee on November 10th led to a data breach, exposing personal information of alumni, donors, students, faculty, and related individuals. The compromised database did not contain highly sensitive data like Social Security numbers, finan...
Read More » -
Logitech Data Breach Exposes User Information
Logitech experienced a data breach due to a zero-day vulnerability in third-party software, leading to unauthorized data copying, but the company promptly patched the issue after a fix was released. The stolen data includes information on employees, consumers, customers, and suppliers, but sensit...
Read More » -
GlobalLogic Alerts 10,000 Staff to Data Theft After Oracle Hack
GlobalLogic notified over 10,000 current and former employees of a data breach after attackers exploited a zero-day vulnerability in Oracle's E-Business Suite, compromising sensitive HR data. The breach, attributed to the Clop ransomware group, involved the theft of extensive personal and financi...
Read More » -
Hyundai Data Breach Exposes SSNs and Driver's Licenses
A data breach at Hyundai AutoEver America exposed sensitive personal information including Social Security numbers and driver's licenses, with unauthorized system access occurring from February 22 to March 2, 2025. The breach impacts Hyundai's primary IT provider that supports critical automotive...
Read More » -
Conduent Data Breach Exposes 10.5 Million People's Information
Conduent experienced a major data breach affecting over 10.5 million people, with potential numbers much higher due to unreported figures from other states. The breach exposed highly sensitive personal information, including Social Security numbers and medical records, though no misuse has been d...
Read More » -
Conduent Data Breach Exposes Data of 10.5 Million People
The cybersecurity breach at Conduent exposed personal data of over 10.5 million individuals, including sensitive information like Social Security numbers and medical records, with the SafePay ransomware gang claiming responsibility for the attack. Unauthorized access to Conduent's systems began i...
Read More » -
Prosper Data Breach Exposes 17.6 Million Accounts
Prosper, a peer-to-peer lending platform, experienced a data breach compromising the personal details of approximately 17.6 million individuals, including current customers and loan applicants. Sensitive information such as Social Security numbers, names, addresses, and financial data was exfiltr...
Read More » -
17 Million Hit by Prosper Data Breach Exposing Personal Info
A data breach at Prosper exposed the personal information of about 17.6 million customers, including sensitive details like names, Social Security numbers, and government IDs. The breach was caused by unauthorized database queries, but the company quickly revoked access and reported no disruption...
Read More »