Topic: identity theft
-
5.6 Million Exposed in 700Credit Data Breach
A major data breach at 700Credit, a credit verification service for auto dealerships, exposed sensitive personal data including Social Security numbers for at least 5.6 million individuals. The breach occurred over a five-month period in 2025, and the company is notifying affected people by mail ...
Read More » -
Identity Theft: It's a Data Problem, Not Just Hacking
Identity theft thrives on easily accessible personal data, which fuels a shadow economy where criminals buy and sell sensitive details without needing advanced technical skills. High-risk data like Social Security numbers and bank details are "master keys" for fraud, while middle-tier (e.g., birt...
Read More » -
5 Plead Guilty in North Korean IT Job Fraud and ID Theft Scheme
Five individuals pleaded guilty for helping North Korean nationals fraudulently obtain remote IT jobs at U.S. companies, generating over $2.2 million for the DPRK regime and compromising identities. The scheme was part of a state-sponsored effort by hacking groups like APT38 to fund weapons devel...
Read More » -
Take Back Control of Your Online Shopping Data
Online shopping involves extensive collection and sharing of personal data, often without full user awareness or consent, posing significant privacy risks. Data is frequently stored indefinitely and shared with third parties, increasing exposure to breaches, misuse, and targeted scams, as seen in...
Read More » -
Insider Threats: Protecting Your Team from Cyber Attacks
Cybercriminals are now infiltrating companies by impersonating IT professionals during hiring, using fabricated personas and deepfakes to gain trusted, privileged access to sensitive systems. The primary goals of these "fake workers" include severe data theft, financial fraud, and cyber espionage...
Read More » -
Your Browser Is Devouring Your Security
Modern web browsers centralize business operations but create significant security blind spots, exposing organizations to data leakage and identity compromise through concentrated sensitive activities. AI tools and browser extensions operate largely unmonitored, with employees frequently using th...
Read More » -
Discord Hack Exposes 70,000 Users' Government IDs
A security breach at Discord exposed sensitive government identification documents of approximately 70,000 users, occurring through a compromised third-party customer support provider and highlighting risks tied to mandatory digital ID verification. The incident poses a substantial identity theft...
Read More » -
Discord data breach exposes user support tickets to hackers
A security breach at Discord exposed sensitive user data after hackers infiltrated a third-party customer support provider, impacting users who had submitted support tickets. The attackers obtained personal details like names, email addresses, message content, and even official ID images, demandi...
Read More » -
SMS Sign-In Links Put Millions at Risk
SMS-based authentication links are creating major security vulnerabilities, exposing users to fraud and identity theft across numerous online services due to easily guessable or enumerable tokens in the URLs. Attackers can exploit these weak tokens to access other users' accounts, view sensitive ...
Read More » -
Protect Your Business from Deepfakes: 4 Essential Steps Now
Deepfakes, created using AI, are a growing threat to businesses, enabling cybercriminals to produce convincing fake audio and video for fraud and misinformation. The risks include severe reputational and financial damage, such as stock value drops from fake announcements, and identity theft throu...
Read More » -
DraftKings Users Hit by Widespread Account Hacks
DraftKings experienced unauthorized account access through a credential stuffing attack, where attackers used stolen login details from external sources to compromise user accounts. The breach exposed personal details like names and contact information, but sensitive data such as full payment car...
Read More » -
DOGE Exposes Social Security Data in Major Cloud Security Breach
An unauthorized live copy of the Social Security database was created in a cloud environment, bypassing standard oversight and putting the personal data of over 300 million Americans at risk. The breach, allegedly directed by SSA officials, exposed sensitive information including names, birth det...
Read More » -
Vandals Target AI Necklace Ads That Record Your Conversations
A wave of vandalism on AI necklace ads in New York City subways reflects public concerns over privacy and AI's role in daily life, with graffiti expressing skepticism about the device's recording and companionship features. Critics targeted the product's implications, linking it to broader issues...
Read More » -
Monroe University Data Breach Impacts 320,000 People
A December 2024 cyberattack at Monroe University compromised sensitive personal data, including Social Security numbers and medical records, of over 320,000 individuals. The university is notifying affected parties and offering a year of free credit monitoring, following a review that concluded i...
Read More » -
Data Breach at Central Maine Healthcare Impacts 145,000+
A major cybersecurity breach at Central Maine Healthcare compromised the personal and medical data of over 145,000 patients and employees, with hackers having undetected access to systems for over two months in early 2023. The exposed data is highly sensitive, including Social Security numbers, h...
Read More » -
The Hidden Cost of Convenience: Your Security at Risk
AI-powered scams are becoming more convincing and harder to detect, with deepfake technology now a primary concern for many individuals. Mobile phones are the most vulnerable point in personal digital security, as many users handle sensitive transactions without adequate protection. Social media ...
Read More » -
Chinese Hacking Contractor Exposed in Major Data Leak
A major data breach at Chinese cybersecurity firm KnownSec exposed hacking tools and sensitive data stolen from over 80 global organizations, including terabytes of records from India, South Korea, and Taiwan, directly linking its activities to Chinese state interests. In a separate incident, sta...
Read More » -
Patched FortiGate Firewalls Hacked, Cisco RCE Probed
A critical authentication bypass flaw (CVE-2025-59718) persists in Fortinet firewalls despite patches, while Cisco urgently addressed an exploited RCE vulnerability (CVE-2026-20045), highlighting ongoing challenges in securing network infrastructure. Sophisticated phishing targets the energy sect...
Read More » -
1.2 Million SimonMed Patients Hit by Data Breach
Over 1.2 million patients of SimonMed Imaging were affected by a data breach, where hackers gained unauthorized network access, potentially exposing sensitive personal and medical information. The Medusa ransomware group claimed responsibility, demanding a $1 million ransom after exfiltrating 212...
Read More » -
Proton: 300 Million Records Breached This Year
A staggering 300 million individual records have been exposed in data breaches this year, according to the Data Breach Observatory, a collaboration between Proton and Constella Intelligence. Small and medium-sized businesses were the primary targets, with nearly half of all breaches affecting com...
Read More » -
Insight Partners Notifies Clients of Ransomware Data Breach
Insight Partners disclosed a ransomware attack that began in October 2024, was detected in January 2025, and compromised personal and financial data of over 12,000 individuals. The breach resulted from a sophisticated social engineering attack, leading to data theft and system encryption, though ...
Read More » -
Norton Rolls Out Global AI Scam Protection for All 360 Plans
Norton has globally expanded its AI-powered Scam Protection to all Norton 360 and mobile security plans, offering real-time defense against scams across web browsing, email, SMS, video platforms, and phone calls. Social engineering threats, including scams, are the most common cyber danger, makin...
Read More » -
Western Sydney University hit by cyber attack
Western Sydney University experienced a cybersecurity breach compromising extensive personal data of students, staff, and alumni, including contact details, financial information, and sensitive records. The university is collaborating with NSW Police, leading to an arrest, but attacks persist, an...
Read More » -
Endesa Data Breach Exposes Customer Information
A major data breach at Spain's energy provider Endesa compromised sensitive customer information, including personal identification, contract details, and payment data, affecting millions across Spain and Portugal. Endesa responded by blocking the compromised accounts, notifying authorities and c...
Read More » -
Credit700 Data Breach Impacts Millions of Car Owners
A major data breach at automotive finance company 700Credit compromised sensitive personal information, including Social Security numbers, for approximately 5.8 million U.S. car buyers. The breach, discovered in October, resulted from a misconfigured API that allowed unauthorized data access and ...
Read More » -
CIRO Data Breach Exposes 750,000 Canadian Investors
A cybersecurity breach at the Canadian Investment Regulatory Organization (CIRO) has compromised the personal data of approximately 750,000 Canadian investors, with the full scope only recently determined after an investigation launched in August. The exposed data is highly sensitive, potentially...
Read More »