Tag: breach
-
Kodak confirms data breach claimed by ShinyHunters extortion gang
Kodak has confirmed that it’s working with external cybersecurity experts to investigate a security breach after hackers gained access to some of the company’s data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kodak-confirms-data-breach-claimed-by-shinyhunters-extortion-gang/
-
Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records
Infinite Campus says a Salesforce breach exposed data tied to 137,000 school staff accounts, raising phishing and SaaS security concerns. The post Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-infinite-campus-salesforce-breach-school-staff-data/
-
Hackers Begin to Leak Novo Nordisk’s Stolen Data
Cybercrime Gang FulcrumSec Claims AI Models Are Among Drug Maker’s 1.3TB Trove. Cybercrime gang FulcrumSec has begun leaking what it claims are samples from 1.3 terabytes of data stolen from pharmaceutical giant Novo Nordisk. The hackers claim the trove contains clinical trial information and intellectual property, including AI models used in drug development. First seen…
-
iRhythm Hit by Cyberattack, Patient Data Stolen and Ransom Demanded
iRhythm disclosed a cyberattack via third-party apps where patient and proprietary data was stolen, followed by a ransom demand. iRhythm Technologies is a U.S.-based digital healthcare company specializing in remote cardiac monitoring and arrhythmia detection. Its best-known product is the Zio, a wearable patch that continuously records a patient’s heart rhythm for up to several…
-
Infinite Campus Incident Exposes Data From 137,000 School Staff Accounts
A breach at Infinite Campus exposed data from 137,000 school staff accounts, highlighting SaaS security risks in education. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/infinite-campus-incident-exposes-data-from-137000-school-staff-accounts/
-
UK to require ID or face scan before you can make social media accounts
Opening a new social media account in the UK will soon mean proving you’re over 16 with an ID upload or a facial age scan, under a government ban on under-16s taking effect in spring 2027. Security experts warn the age checks are easy to circumvent and create new data-breach risks. First seen on bleepingcomputer.com…
-
China-Nexus Actor Spies on US Researchers Undetected for a Year
Google discovered and disrupted the sprawling campaign, which stole RedCAP credentials to breach numerous institutions and exfiltrate sensitive data. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/china-nexus-actor-us-researchers-undetected
-
Infinite Campus Breach Leaks Personal Information of 137,000 Users
A data breach affecting the widely used K12 student information system, Infinite Campus, has exposed the personal information of approximately 137,000 users. This incident is linked to an extortion campaign that occurred in March 2026 and has been attributed to the ShinyHunters threat group. It was officially recorded on Have I Been Pwned (HIBP). This…
-
iRhythm discloses data breach, says hackers stole patient info
Digital healthcare company iRhythm Holdings has disclosed a data breach after hackers stole patients’ personal and health information stored on third-party-hosted business applications. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/irhythm-discloses-data-breach-says-hackers-stole-patient-info/
-
EU Cybersecurity Act 2.0: When good regulation goes bad
Over recent years we’ve witnessed the EU becoming increasingly serious about cybersecurity. After years of watching high profile breaches, many resulting from supply chain … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/16/eu-cybersecurity-act-2-0-regulation/
-
EU Cybersecurity Act 2.0: When good regulation goes bad
Over recent years we’ve witnessed the EU becoming increasingly serious about cybersecurity. After years of watching high profile breaches, many resulting from supply chain … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/16/eu-cybersecurity-act-2-0-regulation/
-
ShinyHunters Hits Universities Via Oracle Zero-Day
Mandiant: 68% of Targets Were Higher Ed Institutions Running PeopleSoft. ShinyHunters exploited a critical zero-day in Oracle PeopleSoft to breach more than 100 organizations globally, researchers at Mandiant and Google’s Threat Intelligence Group said, with universities and colleges accounting for the majority of confirmed targets in the active extortion campaign. First seen on govinfosecurity.com Jump…
-
Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom
Nintendo faces an alleged data extortion incident involving HR records, internal reports, and potential exposure of third-party vendors. The post Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-nintendo-alleged-data-leak-third-party-risk/
-
Labcorp Agrees to Pay $35M to Settle AMCA Data Breach
Diagnostics Lab Reported 10.3M Patients Affected by Collection Agency’s Hack. Medical laboratory testing giant Labcorp has agreed to pay $35 million to settle class action litigation stemming from a 2018 hacking incident on now-defunct American Medical Collections Agency. Labcorp reported the vendor breach in 2019 as affecting nearly 10.3 million patients. First seen on govinfosecurity.com…
-
Maine closes data breach portal to the public after fake reports
Maine is still allowing companies to report breaches, but won’t make the portal easily available to the public until after it completes an audit of its procedures to stop such incidents, according to a press release from the Maine attorney general’s office. First seen on therecord.media Jump to article: therecord.media/maine-turns-off-breach-portal-fake-reports
-
Hackers Demand $2M From Nintendo Over Alleged Data Breach
A threat actor claims to have stolen Nintendo data and is demanding $2 million. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/hackers-demand-2m-from-nintendo-over-alleged-data-breach/
-
Council of Europe investigates ShinyHunters data breach claims
The Council of Europe, the continent’s oldest intergovernmental body, is probing claims of a data breach made by the ShinyHunters extortion group over the weekend. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/council-of-europe-investigates-shinyhunters-data-breach-claims/
-
Chinese hackers breach REDCap servers, steal medical research
A China-linked espionage campaign targeted exposed REDCap servers to deploy the InfiniteRed malware and steal sensitive data from a medical institution in North America. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-hackers-breach-redcap-servers-steal-medical-research/
-
15th June Threat Intelligence Report
The University of Nottingham, a UK research university, has suffered a data breach after ShinyHunters accessed its student records system. The incident affected about 454,600 current and former students and exposed contact details, […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2026/15th-june-threat-intelligence-report/
-
Maine forced to take down data breach portal after fake notices filed with authorities
The US state of Maine has taken its public data breach notification portal offline after someone submitted fraudulent breach disclosures impersonating two well-known technology companies. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/maine-take-down-data-breach-portal
-
Handala Hacking Group Claims Breach of California Water Service
The Handala hacking group claims it has targeted California Water Service, leaking 5GB of customer database and GPS network files in its latest infrastructure attack. First seen on hackread.com Jump to article: hackread.com/handala-hacking-group-california-water-service-breach/
-
Infinite Campus data breach affects 137,000 school staff accounts
The ShinyHunters extortion gang stole personal information from more than 137,000 school staff accounts in a Salesforce data theft attack that targeted the widely used Infinite Campus K-12 student information system in March. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/infinite-campus-data-breach-affects-137-000-school-staff-accounts/
-
SHADOWBYT3$ Allegedly Claims Nintendo Breach and Theft of Sensitive Data
Threat intelligence sources have flagged a potential cybersecurity incident involving Nintendo after threat actor “SHADOWBYT3$” allegedly claimed responsibility for breaching internal systems and exfiltrating sensitive data. The claim surfaced on June 13, 2026, via underground monitoring channels and was later amplified by threat intelligence platform Hackmanac. At the time of writing, the incident remains unverified,…
-
Maine Takes Breach Reporting Portal Offline After Fake Entries
The Office of the Maine Attorney General has suspended its breach reporting portal First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/maine-breach-reporting-portal/
-
Open-source CI/CD abuse detector guards against stolen credential attacks
CI/CD Abuse Detector is an open-source project that uses a large language model to flag suspicious changes to continuous integration and continuous deployment pipelines, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/15/ci-cd-abuse-detector-open-source/