Tag: data breach
741 articles

23andMe Agrees to $18m Settlement, New Data Security Mandates
After cracking down on 23andMe's lax security measures, a coalition of 42 US attorneys general, led by New York Attorney General Letitia James, has secured an $18 million settlement and binding data-protection commitments to safeguard customer information. This move comes after a 2023 data breach put millions of 23andMe customers at risk of having their personal info exposed.

Ernst & Young Exposes Client Data in Third-Party Support System Hack
Ernst & Young suffered a data breach when hackers accessed a third-party support system, downloading sensitive client documents between March 28 and April 12. The breach was detected on April 23, prompting the company to alert affected clients and notify authorities.

23andMe Breach Settlement Imposes $18 Million Penalty
New York Attorney General Letitia James slammed 23andMe for its lax security, saying the company's failure to protect customer data put millions at risk. The criticism comes as part of a settlement that hits 23andMe with an $18 million penalty for its role in a massive data breach.

Ransomware Attacks Surge Through Compromised Logins
Ransomware attacks are surging, with a staggering 79% of incidents linked to compromised identities and legitimate user logins, making it the most common entry point for hackers. This marks a significant shift away from traditional software flaw exploitation, now accounting for just 18% of initial attacks.

Lidl Data Breach Exposes Customer Info Across Europe
Lidl has warned customers in Belgium and the Netherlands that a data breach exposed their personal info, after unidentified individuals briefly accessed a file containing customer data stored with a third-party IT provider. The breach affected online customers in Germany, Belgium, and the Netherlands, but Lidl stresses that its online shop system itself was not compromised.

Lidl Online Shop Breach Exposes Customer Data After Service Provider Hack
Lidl's online shop was hit by a data breach after a service provider was hacked, exposing customer information - but fortunately, the online shop's system itself remained secure. The company has notified affected customers and taken steps to address the issue.

Miinto Breach Exposes Customer Order Data to Unauthorized Access
Miinto recently suffered a data breach, allowing unauthorized access to its internal order management system, potentially exposing your order data. The company has notified affected customers and taken steps to address the issue, reporting it to the police and relevant data protection authorities.

NHS Trust Investigates Email Data Breach Involving Maternity Patients
NHS Forth Valley is taking immediate action to investigate a data breach that exposed the personal details of around 150 women who used local maternity services, after a staff member accidentally sent the information to a personal email account. The breach has been contained, with the staff member confirming they've deleted the data, but an internal probe is underway to ensure no further risk.

AssuranceAmerica Breach Exposes 6.9 Million Driver Records
On March 17, 2026, AssuranceAmerica detected a security breach that put 6.9 million driver records at risk, allegedly caused by a malicious attack on one of its employees on March 16, 2026. The company has begun notifying affected individuals about the breach.

Hackers Breach Mount Royal University, Expose Sensitive Data
Mount Royal University recently fell victim to a cyberattack that compromised sensitive data, with hackers accessing and stealing files from the university's network before deleting them. The breach, which occurred on June 17, has disrupted multiple university systems and may take weeks to fully recover from.

Accenture Breach Exposes Source Code, Heightens Supply Chain Risk
Accenture's recent data breach, where 35GB of sensitive data including source code was stolen, shines a spotlight on the hidden risks of working with major consulting and services firms. As a trusted partner to businesses and governments worldwide, Accenture's breach heightens concerns about supply chain vulnerabilities.

Multiple Breaches Expose Millions in June
A massive data breach at Madison Square Garden put over 26 million records at risk after a threat actor group, ShinyHunters, made a ransom demand and released the data when it wasn't met. This alarming incident highlights the growing threat of data breaches and the importance of robust cybersecurity measures.

AI-Powered Attacks Target Service Desks With Convincing Impersonation Tactics
Beware: AI-powered attacks are now targeting service desks with incredibly convincing impersonation tactics, making it easier for attackers to trick agents into bypassing security controls. A single phone call can be all it takes to spark a devastating data breach, as seen in high-profile incidents at major companies like M&S, MGM Resorts, and Clorox.

Accenture Confirms Data Breach After Hacker Offers Stolen Source Code for Sale
Accenture swiftly responded to a data breach, confirming that a security issue was isolated and resolved, with no disruption to their operations or client services. The company remains tight-lipped about the breach's scope and impact, leaving many questions unanswered.

KDDI Breach Exposes 12.2M Customer Emails
A massive data breach at KDDI Corporation has put 12.2 million customer emails and 7.6 million passwords at risk, all stemming from a single unpatched vulnerability in a third-party software system. This staggering incident highlights the importance of robust cybersecurity measures, even for seemingly secure systems.

ShinyHunters Breach Exposes 2.3M Moody Bible Institute Accounts
A massive data breach at Moody Bible Institute has exposed the sensitive information of over 2.3 million people, including names, addresses, phone numbers, and more, after being targeted by the notorious extortion group ShinyHunters. The stolen data, which was leaked on June 23, puts countless individuals at risk of identity theft and cyber attacks.

AdaptHealth Breach Exposes Patient Data via Social Engineering Tactics
AdaptHealth recently fell victim to a data breach, where hackers used clever social engineering tactics to trick a third-party contractor into giving them access to sensitive patient information stored in the company's cloud environment. This alarming breach put a large volume of patient data at risk, prompting AdaptHealth to disclose the incident to the Securities and Exchange Commission.

Medtronic Data Breach Exposes 9 Million Records to Hackers
Medtronic recently discovered a data breach that put 9 million records at risk of being accessed by hackers, sparking a thorough investigation and prompt notification of affected customers. The breach, which occurred between April 13 and April 19, 2026, exposed sensitive personal data to an unauthorized third party.

Aflac Japan Discloses Data Breach Compromising Millions
Aflac Japan has suffered a massive data breach, exposing sensitive personal and financial information of nearly 4.4 million customers after a mysterious hacker gained access to company systems for 10 days in June. The breach, confined to Aflac's Japanese operations, has sparked an ongoing investigation into its full impact.

Nissan Breach Exposes Sensitive Employee Data via Oracle Zero-Day Flaw
Nissan's HR and payroll systems were compromised when hackers exploited a critical Oracle PeopleSoft vulnerability, putting sensitive employee data at risk. The breach, which occurred between May 27 and June 9, is a stark reminder of the importance of robust data security measures.

Aflac Discloses Data Breach After Japan Subsidiary Hack
Aflac revealed a data breach at its Japan subsidiary, Aflac Life Insurance Japan Ltd., after discovering an unauthorized third-party had accessed certain systems between June 15 and June 25, 2026. The company swiftly took action to contain the incident and prevent further intrusion.

Nissan Breach Exposes Employee Data After Oracle PeopleSoft Exploit
Nissan confirmed a data breach exposing employee information after a cyberattack exploited a critical vulnerability in Oracle PeopleSoft, part of a larger campaign that may have compromised hundreds of companies. The breach was tied to a specific threat actor targeting Nissan's personnel records.

KDDI Data Breach Compromises 14.2 Million Email Logins at Six ISPs
A massive data breach at KDDI Corporation has put 14.2 million email logins at risk, compromising sensitive information for customers across six Japanese internet service providers. The breach, discovered on June 17, exploited a vulnerability in a third-party software component used on one of KDDI's email systems.

Texas Hunting License Data Breach Exposes Millions
A recent data breach at the Texas Parks and Wildlife Department may have exposed over three million hunting and fishing license customers, putting sensitive information like driver's license numbers and passport data at risk of being used for account takeover, synthetic identity fraud, and targeted phishing. This breach is just the beginning, as stolen data can be used for a range of malicious activities.