Tag: data-breach
-
Threat Actors Launch Mass Reconnaissance of AI Systems
More Than 91,000 Attacks Target Exposed LLM Endpoints in Coordinated Campaigns. Two coordinated campaigns generated more than 91,000 attack sessions against AI infrastructure between October and January, with threat actors probing more than 70 model endpoints from OpenAI, Anthropic and Google to build target lists for future exploitation. First seen on govinfosecurity.com Jump to article:…
-
Meta fixes Instagram password reset flaw, denies data breach
Meta fixed an Instagram password reset flaw that let third parties send reset emails, while denying a data breach despite leak claims. Meta confirmed fixing an Instagram password reset vulnerability that allowed third parties to trigger reset emails, while denying any breach despite claims of leaked user data. >>We fixed an issue that let an…
-
BreachForums Data Breach Exposes Nearly 324,000 Users
A January 2026 breach exposed data on nearly 324,000 BreachForums users, weakening Dark Web anonymity and aiding investigations. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/breachforums-data-breach-exposes-324000-users/
-
Instagram Confirms Password-Reset Spam Flood, Denies Breach
Security Experts See Coincidental Timing After Leak of Scraped Instagram User Data. Instagram said a massive wave of password reset emails sent to its users traced to malicious abuse of a legitimate feature, but didn’t result from any breach of its systems. Separately, security experts said a threat actor leaked 6.2 million users’ email addresses,…
-
377,000 Affected in Texas Gas Station Operator Breach
A phishing attack at Texas fuel operator Gulshan Management Services exposed personal data of more than 377,000 individuals. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/377000-affected-in-texas-gas-station-operator-breach/
-
Spanish energy giant Endesa discloses data breach affecting customers
Spanish energy provider Endesa and its EnergÃa XXI operator are notifying customers that hackers accessed the company’s systems and accessed contract-related information, which includes personal details. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/spanish-energy-giant-endesa-discloses-data-breach-affecting-customers/
-
Two Separate Campaigns Target Exposed LLM Services
A total of 91,403 sessions targeted public LLM endpoints to find leaks in organizations’ use of AI and map an expanding attack surface. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/separate-campaigns-target-exposed-llm-services
-
Max severity Ni8mare flaw impacts nearly 60,000 n8n instances
Nearly 60,000 n8n instances exposed online remain unpatched against a maximum-severity vulnerability dubbed “Ni8mare.” First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/max-severity-ni8mare-flaw-impacts-nearly-60-000-n8n-instances/
-
âš¡ Weekly Recap: AI Automation Exploits, Telecom Espionage, Prompt Poaching & More
This week made one thing clear: small oversights can spiral fast. Tools meant to save time and reduce friction turned into easy entry points once basic safeguards were ignored. Attackers didn’t need novel tricks. They used what was already exposed and moved in without resistance.Scale amplified the damage. A single weak configuration rippled out to…
-
There was no data breach, Instagram says
News of a possible Instagram data breach spread over the weekend after Malwarebytes reported that cybercriminals had stolen sensitive information from 17.5 million Instagram … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/12/instagram-data-breach-leak-2024/
-
BreachForums Database Leak Turns the Tables on Threat Actors
A database featuring 300,000+ users of notorious hacking forum BreachForums has been leaked online First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/breachforums-database-leak/
-
Canopy Health Confirms Cyberattack, Patients Not Notified for Six Months
Canopy Health confirms it suffered a serious cyber intrusion that went undisclosed to patients for six months. The delayed notification has triggered anger and deep concern among those affected, many of whom say the Canopy Health data breach has eroded their confidence in health providers and the systems meant to protect sensitive personal information. First…
-
Instagram’s “17 Million User Data Leak” Was Just Scraped Records from 2022
Instagram’s 17 million user data leak wasn’t a new breach – Hackread.com’s in-depth analysis shows it was scraped in 2022, leaked in 2023, and falsely repackaged in 2026. First seen on hackread.com Jump to article: hackread.com/instagram-user-data-leak-scraped-records-2022/
-
Instagram denies breach amid claims of 17 million account data leak
Instagram says it fixed a bug that allowed threat actors to mass-request password reset emails, amid claims that data from more than 17 million Instagram accounts was scraped and leaked online. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/instagram-denies-breach-amid-claims-of-17-million-account-data-leak/
-
Massive Instagram Data Scare Ties 17.5M Accounts to Leak, But Meta Denies Breach
A major cybersecurity scare has put Instagram, one of the world’s largest social networks, under intense scrutiny after millions of users globally reported unexpected password reset emails, fueling fears of a large-scale data breach. While evidence of leaked account data has surfaced, Instagram’s parent company Meta insists that its systems were not compromised and that……
-
Altes Datenleck: Passwort-Reset-Attacken gegen Instagram-Nutzer
Instagram-Nutzer berichten von Passwort-Reset-Anfragen, die nicht von ihnen stammen. Ein Zusammenhang mit einem Datenleck ist wahrscheinlich. First seen on golem.de Jump to article: www.golem.de/news/altes-datenleck-passwort-reset-attacken-gegen-instagram-nutzer-2601-204047.html
-
Security Affairs newsletter Round 558 by Pierluigi Paganini INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. A massive breach exposed data of 17.5M Instagram users North Korealinked APT Kimsuky behind quishing attacks,…
-
A massive breach exposed data of 17.5M Instagram users
A massive breach exposed data of 17.5M Instagram users, triggering mass password reset emails and fears that stolen data is already circulating online. A major data breach has exposed the personal data of about 17.5 million Instagram users, Malwarebytes Labs researchers warn. Exposed data includes usernames, physical addresses, phone numbers, and email addresses,. Since January…
-
Database of 323,986 BreachForums Users Leaked as Admin Disputes Scope
Database of 323,986 BreachForums users leaked online as forum admins claim the exposed data is partial and dates back to August 2025. First seen on hackread.com Jump to article: hackread.com/breachforums-database-users-leak-admin-disputes/
-
BreachForums hacking forum database leaked, exposing 324,000 accounts
The latest incarnation of the notorious BreachForums hacking forum has suffered a data breach, with its user database table leaked online. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/breachforums-hacking-forum-database-leaked-exposing-324-000-accounts/
-
Massive Instagram Data Breach Exposes Personal Details of 17.5 Million Users
A staggering cybersecurity incident has come to light, with 17.5 million Instagram users’ personal information exposed in a data breach advertised on dark web marketplaces. Cybersecurity firm Malwarebytes first alerted the public via X (formerly Twitter), confirming the leak’s severity as stolen data, including usernames, emails, phone numbers, and partial locations, circulates for sale. Affected…
-
Doomsday for Cybercriminals, Data Breach of Major Dark Web Forum
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/doomsday-for-cybercriminals-data-breach-of-major-dark-web-foru
-
Illinois Department of Human Services (IDHS) suffered a data breach that impacted 700K individuals
Illinois Department of Human Services (IDHS) exposed personal and health data of nearly 700,000 residents due to incorrect privacy settings. The Illinois Department of Human Services (IDHS ) disclosed a data breach after misconfigured privacy settings exposed personal and health data of nearly 700,000 residents. On September 22, 2025, IDHS discovered that internal maps meant…
-
Illinois Notifies 700,000 of Misconfiguration Breach
Mapping Platform Exposed Addresses and Medical Assistance Plans. The Illinois Department of Human Services is notifying more than 700,000 people of a breach involving incorrect privacy settings left in place for several years that exposed online data pertaining to Medicare, Medicaid and rehabilitation services recipients. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/illinois-notifies-700000-misconfiguration-breach-a-30486
-
Illinois Department of Human Services data breach affects 700K people
The Illinois Department of Human Services (IDHS), one of Illinois’ largest state agencies, accidentally exposed the personal and health data of nearly 700,000 residents due to incorrect privacy settings. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/illinois-department-of-human-services-data-breach-affects-700k-people/
-
Illinois health department exposed over 700,000 residents’ personal data for years
The security lapse exposed personal information belonging to residents who received state benefits. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/08/illinois-health-department-exposed-over-700000-residents-personal-data-for-years/
-
Illinois health department exposed over 700,000 residents’ personal data for years
The security lapse exposed personal information belonging to residents who received state benefits. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/08/illinois-health-department-exposed-over-700000-residents-personal-data-for-years/
-
GoBruteforcer Botnet Targets Linux Servers
The GoBruteforcer botnet has been observed targeting exposed Linux servers on services like FTP and MySQL First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/gobruteforcer-botnet-linux-servers/