Security Affairs

MAY 15, 2025

Coinbase confirmed rogue contractors stole customer data and demanded a $20M ransom in a breach reported to the SEC. Coinbase said rogue contractors stole data on under 1% of users and demanded $20M; the data breach was disclosed in an SEC filing. “Criminals targeted our customer support agents overseas.

Data breaches 85

Data breaches Banking Accountability Retail 85

Security Affairs

JANUARY 15, 2025

A previously unknown threat actor released config files and VPN passwords for Fortinet FortiGate devices on a popular cybercrime forum. A previously unknown threat actor named Belsen Group published configuration files and VPN passwords for over 15,000 Fortinet FortiGate appliances. “The data includes: IPs.

VPN 130

VPN Passwords Firewall Firmware 130

Krebs on Security

DECEMBER 19, 2024

The makers of Acunetix, Texas-based application security vendor Invicti Security , confirmed Silent Push’s findings, saying someone had figured out how to crack the free trial version of the software so that it runs without a valid license key. ” Constella also finds the same email registered at the website netguard[.]codes

Hacking 259

Hacking Cybercrime Advertising Data breaches 259

The Last Watchdog

JUNE 12, 2023

Information privacy and information security are two different things. Related: Tapping hidden pools of security talent Information privacy is the ability to control who (or what) can view or access information that is collected about you or your customers. still available for you to use.

Information Security 202

Information Security Data breaches CISO Encryption 202

Security Affairs

AUGUST 24, 2022

The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database. The company disclosed a data breach after threat actors have access to a limited subset of data stored in a compromised database. Exposed data includes emails, usernames, and encrypted passwords.

Data breaches 135

Data breaches Passwords Media Accountability 135

Security Affairs

OCTOBER 31, 2024

Peruvian Interbank confirmed a data breach after threat actors accessed its systems and leaked stolen information online. Interbank disclosed a data breach after a threat actor claimed the hack of the organization and leaked stolen data online. TB of company data related to 3 million customers.

Data breaches 128

Data breaches Financial Services Hacking Mobile 128

Security Affairs

JUNE 17, 2025

Zoomcar disclosed a data breach impacting 8.4M Zoomcar discovered a data breach impacting 8.4M The company is investigating the security breach and has determined that the exposed information included names, contacts, and addresses. Zoomcar discovered a data breach impacting 8.4M

Data breaches 70

Data breaches Passwords Cyber Attacks Ransomware 70

Security Affairs

JULY 10, 2025

Australia’s largest airline Qantas has confirmed that the recent data breach impacted 5.7 Early this month, Australian airline Qantas disclosed a cyberattack after hackers accessed a third-party platform used by a call centre, stealing significant customer data. Qantas confirmed that hackers stole data of approximately 5.7

Data breaches 77

Data breaches Social Engineering Engineering Accountability 77

Security Affairs

OCTOBER 28, 2024

. “Free was “the victim of a cyberattack targeting a management tool” leading to “unauthorized access to some of the personal data associated with the accounts of certain subscribers ,” the second largest telephone operator in France confirmed to Agence France-Presse (AFP) on Saturday, October 26.

Cyber Attacks 126

Cyber Attacks Telecommunications Data breaches Banking 126

Security Affairs

OCTOBER 21, 2024

Despite being informed weeks prior, the organization’s failure to rotate exposed API keys, particularly the Zendesk token with access to over 800,000 support tickets, reflects poor incident response. Poor cyber hygiene increases the risk of further data breaches and could undermine user trust.

Internet 128

Internet Internet Data breaches Authentication 128

Security Affairs

NOVEMBER 22, 2021

GoDaddy suffered a data breach that impacted up to 1.2 GoDaddy discloses a data breach that impacted up to 1.2 million of its customers, threat actors breached the company’s Managed WordPress hosting environment. ” said Demetrius Comes, GoDaddy’s Chief Information Security Officer.

Data breaches 141

Data breaches Passwords Accountability Information Security 141

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. ” reads the data breach notification.

Education 64

Education Data breaches Identity Theft Insurance 64

Security Affairs

JANUARY 11, 2021

American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. American technology vendor Ubiquiti Networks suffered a data breach and is sending out notification emails to its customers asking them to change their passwords and enable 2FA for their accounts.

Data breaches 141

Data breaches Passwords Accountability IoT 141

Security Affairs

JULY 2, 2025

The company highlights that while core systems remain secure, data from up to 6 million customer service records may have been stolen, including names, emails, phone numbers, birth dates, and frequent flyer numbers. No financial data, passport details, passwords, or login credentials were compromised.

Data breaches 64

Data breaches Social Engineering Engineering Cybercrime 64

Security Affairs

SEPTEMBER 5, 2023

The nonprofit organization Freecycle Network (Freecycle.org) confirmed that it has suffered a data breach that impacted more than 7 million users. The security breach was discovered on August 30, exposed data includes usernames, User IDs, email addresses and passwords.

Data breaches 132

Data breaches Passwords Phishing Hacking 132

Security Affairs

AUGUST 25, 2022

Password management software firm LastPass has suffered a data breach, threat actors have stole source code and other data. The company engaged a leading cybersecurity and forensics firm to investigate the incident, it confirmed that the data breach did not compromise users’ Master Passwords.

Data breaches 144

Data breaches Password Management Passwords Architecture 144

Security Affairs

JANUARY 7, 2022

The appointment scheduling service FlexBooker discloses a data breach that impacted over 3.7 Stolen data are now available for sale on multiple cybercrime forums. The threat actors claim the stolen database contains customer information, including names, emails, phone numbers, hashed passwords, and password salt.

Data breaches 145

Data breaches Accountability Passwords Cybercrime 145

Security Affairs

MAY 13, 2025

This week, a cyber update published by the company on its website confirmed the data breach: “To proactively manage the incident, we immediately took steps to protect our systems and engaged leading cyber security experts. The personal data could include contact details, date of birth and online order history.

Data breaches 61

Data breaches Cyber Attacks Passwords Social Engineering 61

Security Affairs

MAY 21, 2025

Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals. Coinbase disclosed that a data breach impacted 69,461 individuals after overseas support staff improperly accessed customer and corporate data. The final impact remains under review.

Data breaches 73

Data breaches Banking Accountability Retail 73

Security Affairs

JANUARY 30, 2021

US wireless carrier UScellular discloses data breach, personal information of customers may have been exposed and their phone numbers ported. US wireless carrier UScellular discloses a data breach that exposed personal information of its customers. ” reads the USCellular data breach notification.

Data breaches 145

Data breaches Wireless Retail Accountability 145

Malwarebytes

MARCH 16, 2022

In February 2019, a threat actor was able to access millions of email addresses and passwords. According to the complaint by the FTC this was made possible because CafePress failed to implement reasonable security measures to protect the sensitive information of buyers and sellers stored on its network.

Data breaches 131

Data breaches Passwords Authentication Social Engineering 131

Security Affairs

NOVEMBER 1, 2020

A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a hacker forum. Only RedMart, after being informed by Bleeping computer, disclosed a security breach. million (8.1

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

MAY 3, 2021

Which are the most common causes of a Data Breach and how to prevent It? Data breaches are highly damaging and equally embarrassing for businesses and consumers. If you look at Verizon’s 2020 Data Breach Investigations Report, you can find some of the most common causes of data breaches.

Data breaches 145

Data breaches Social Engineering Engineering Network Security 145

Security Affairs

FEBRUARY 5, 2025

The International Civil Aviation Organization (ICAO) is investigating a data breach affecting system and employee security. This comes after an individual claimed in a January 5 post on a popular hacking forum to have accessed 42,000 documents from ICAO, including personal information (PII).

Data breaches 99

Data breaches Information Security Hacking Marketing 99

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Also, no customer account passwords were accessed. million of them.

Data breaches 137

Data breaches Retail Passwords Accountability 137

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics disclosed a data breach that exposed customer personal information to an unauthorized individual. Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. “What information was involved?

Data breaches 139

Data breaches eCommerce Hacking Authentication 139

Security Affairs

NOVEMBER 12, 2020

The popular children’s online playground Animal Jam has suffered a data breach that affected more than 46 million accounts. Animal Jam has suffered a data breach impacting 46 million accounts belonging to children and parents who signed up for the game. . million monthly active users. million monthly active users.

Data breaches 142

Data breaches Accountability Passwords Encryption 142

Security Affairs

SEPTEMBER 27, 2023

DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches. DarkBeam has apparently been collecting information to alert its customers in case of a data breach. Sample of leaked data. What to do if your password was leaked?

Passwords 145

Passwords Data breaches Phishing Hacking 145

Security Affairs

DECEMBER 23, 2023

Mobile virtual network operator Mint Mobile suffered a new data breach, threat actors had access to customers’ personal information. Mint Mobile experienced a recent data breach, exposing customers’ personal information to unauthorized access by threat actors.

Data breaches 136

Data breaches Mobile Wireless Data collection 136

Security Affairs

APRIL 26, 2024

Media reported [ 1 , 2 ] that the company is notifying millions of current and former members of a data breach. TechCrunch reported that the company confirmed it shared patients’ information with third-party organizations, including Google, Microsoft and X, for advertising purposes. million residents.

Data breaches 138

Data breaches Healthcare Advertising Mobile 138

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data.

Data breaches 125

Data breaches Retail Passwords Accountability 125

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services 139

Financial Services Data breaches Identity Theft Banking 139

Security Affairs

MAY 16, 2024

The Spanish bank Santander disclosed a data breach at a third-party provider that impacted customers in Chile, Spain, and Uruguay. The Spanish financial institution Santander revealed a data breach involving a third-party provider that affected customers in Chile, Spain, and Uruguay. ” continues the statement.

Data breaches 138

Data breaches Banking Passwords Marketing 138

Security Affairs

MAY 22, 2021

Air India disclosed a data breach that impacted roughly 4.5 Air India has disclosed a data breach that impacted 4.5 million of its customers, exposed data includes the personal information of customers registered between August. ” reads the data breach notification sent to the customers.

Data breaches 135

Data breaches Passwords Hacking Cyber Attacks 135

Security Affairs

DECEMBER 14, 2020

The company pointed out that financial information either passwords were not exposed. SecurityAffairs – hacking, data leak). The post Robotic Process Automation vendor UiPath discloses data breach appeared first on Security Affairs. The incident did not expose the company’s official products.

Data breaches 145

Data breaches Backups Software Passwords 145

Security Affairs

MARCH 16, 2024

Unemployment agency France Travail (Pôle Emploi) recently suffered a data breach that could impact 43 million people. On August 2023, the French government employment agency Pôle emploi suffered a data breach and notified 10 million individuals impacted by the security breach.

Data breaches 139

Data breaches Cybercrime Government Ransomware 139

Security Affairs

DECEMBER 30, 2020

T-Mobile has disclosed a data breach that exposed customers’ network information (CPNI), including phone numbers and calls records. T-Mobile has disclosed a data breach exposing customers’ account’s information. ” reads the statement published by the company. Pierluigi Paganini.

Data breaches 145

Data breaches Mobile Telecommunications Accountability 145