Tag: data-breach

Logitech confirms data breach

Nov 17, 2025 4:49 PM

Tags: breach, computer, data, data-breach, Hardware, technology

Logitech, the Swiss multinational electronics and technology company best known for marketing computer peripherals and hardware, has suffered a data breach. >>While the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/17/logitech-data-breach/
DoorDash Hit by Cybersecurity Breach, Millions of Users Potentially Exposed

Nov 17, 2025 3:49 PM

Tags: breach, cybersecurity, data, data-breach, social-engineering

DoorDash has disclosed a social engineering-driven data breach exposing user contact details in four countries, raising concerns about delayed notification. The post DoorDash Hit by Cybersecurity Breach, Millions of Users Potentially Exposed appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-doordash-breach-november-2025/
AIPAC Discloses Data Breach, Says Hundreds Affected

Nov 17, 2025 5:49 AM

Tags: access, breach, data, data-breach

AIPAC reports data breach after external system access, hundreds affected, investigation ongoing with added security steps. First seen on hackread.com Jump to article: hackread.com/aipac-data-breach-hundreds-affected/
DoorDash hit by data breach after an employee falls for social engineering scam

Nov 15, 2025 7:49 PM

Tags: breach, data, data-breach, email, scam, social-engineering

Food delivery giant DoorDash confirms a data breach on Oct 25, 2025, where an employee fell for a social engineering scam. User names, emails, and home addresses were stolen. First seen on hackread.com Jump to article: hackread.com/doordash-data-breach-employee-social-engineering-scam/
Kunden- und Mitarbeiterdaten von Logitech gehackt

Nov 15, 2025 2:49 PM

Tags: cyberattack, data-breach, oracle, ransomware

Der Zubehörhersteller Logitech hat ein Datenleck eingeräumt. Der Angriff erfolgte wohl über Oracle-Software. First seen on golem.de Jump to article: www.golem.de/news/ransomware-kunden-und-mitarbeiterdaten-von-logitech-gehackt-2511-202224.html
How shadow IT leaves every industry in the dark

Nov 15, 2025 12:49 AM

Tags: access, ai, breach, cloud, compliance, computer, control, data, data-breach, fintech, group, healthcare, infrastructure, insurance, Internet, mobile, network, privacy, regulation, risk, saas, service, technology, tool, unauthorized, vulnerability

Industry Examples of Shadow IT and Shadow AI Healthcare Consumer messaging, unapproved storage of medical imaging files, certificate challenges due to specialized portals for specific healthcare groups, department-run electronic health record (EHR) environments, unapproved telehealth platforms, AI for note summarization Insurance Custom applications for new insurance policy introductions, certificate challenges, maintenance issues, unsanctioned SaaS for…
How shadow IT leaves every industry in the dark

Nov 15, 2025 12:49 AM

Tags: access, ai, breach, cloud, compliance, computer, control, data, data-breach, fintech, group, healthcare, infrastructure, insurance, Internet, mobile, network, privacy, regulation, risk, saas, service, technology, tool, unauthorized, vulnerability

Industry Examples of Shadow IT and Shadow AI Healthcare Consumer messaging, unapproved storage of medical imaging files, certificate challenges due to specialized portals for specific healthcare groups, department-run electronic health record (EHR) environments, unapproved telehealth platforms, AI for note summarization Insurance Custom applications for new insurance policy introductions, certificate challenges, maintenance issues, unsanctioned SaaS for…
Logitech confirms data breach after Clop extortion attack

Nov 14, 2025 11:49 PM

Tags: attack, breach, business, cyberattack, data, data-breach, extortion, Hardware, oracle, theft

Hardware accessory giant Logitech has confirmed it suffered a data breach in a cyberattack claimed by the Clop extortion gang, which conducted Oracle E-Business Suite data theft attacks in July. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/logitech-confirms-data-breach-after-clop-extortion-attack/
Checkout.com snubs hackers after data breach, to donate ransom instead

Nov 14, 2025 5:49 PM

Tags: breach, cloud, data, data-breach, finance, group, hacker, ransom, technology, threat

UK financial technology company Checkout announced that the ShinyHunters threat group has breached one of its legacy cloud storage systems and is now extorting the company for a ransom. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/checkoutcom-snubs-shinyhunters-hackers-to-donate-ransom-instead/
Checkout.com snubs hackers after data breach, to donate ransom instead

Nov 14, 2025 5:49 PM

Tags: breach, cloud, data, data-breach, finance, group, hacker, ransom, technology, threat

UK financial technology company Checkout announced that the ShinyHunters threat group has breached one of its legacy cloud storage systems and is now extorting the company for a ransom. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/checkoutcom-snubs-shinyhunters-hackers-to-donate-ransom-instead/
Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking

Nov 14, 2025 4:49 PM

Tags: breach, china, cyber, data, data-breach, hacking, india, leak

A massive data leak reportedly at Chinese firm Knownsec (Chuangyu) exposed 12,000 files detailing state-backed ‘cyber weapons’ and spying on over 20 countries. See the details, including 95GB of stolen Indian immigration data. First seen on hackread.com Jump to article: hackread.com/chinese-tech-firm-leak-state-linked-hacking/
Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking

Nov 14, 2025 4:49 PM

Tags: breach, china, cyber, data, data-breach, hacking, india, leak

A massive data leak reportedly at Chinese firm Knownsec (Chuangyu) exposed 12,000 files detailing state-backed ‘cyber weapons’ and spying on over 20 countries. See the details, including 95GB of stolen Indian immigration data. First seen on hackread.com Jump to article: hackread.com/chinese-tech-firm-leak-state-linked-hacking/
Copy-paste vulnerability hits AI inference frameworks at Meta, Nvidia, and Microsoft

Nov 14, 2025 1:49 PM

Tags: ai, authentication, cloud, data, data-breach, exploit, framework, google, infrastructure, Internet, linkedin, LLM, microsoft, nvidia, oracle, risk, vulnerability

Why this matters for AI infrastructure: The vulnerable inference servers form the backbone of many enterprise-grade AI stacks, processing sensitive prompts, model weights, and customer data. Oligo reported identifying thousands of exposed ZeroMQ sockets on the public internet, some tied to these inference clusters.If exploited, an attacker could execute arbitrary code on GPU clusters, escalate…
Copy-paste vulnerability hits AI inference frameworks at Meta, Nvidia, and Microsoft

Nov 14, 2025 1:49 PM

Tags: ai, authentication, cloud, data, data-breach, exploit, framework, google, infrastructure, Internet, linkedin, LLM, microsoft, nvidia, oracle, risk, vulnerability

Why this matters for AI infrastructure: The vulnerable inference servers form the backbone of many enterprise-grade AI stacks, processing sensitive prompts, model weights, and customer data. Oligo reported identifying thousands of exposed ZeroMQ sockets on the public internet, some tied to these inference clusters.If exploited, an attacker could execute arbitrary code on GPU clusters, escalate…
The retail sector needs a cybersecurity talent incubator

Nov 14, 2025 12:49 PM

Tags: attack, cyber, cybersecurity, data-breach

Retailers are exposed to cyber attacks and personnel, not tech, is the answer. First seen on cyberscoop.com Jump to article: cyberscoop.com/retail-cybersecurity-crisis-nrf-leadership-talent-pipeline-op-ed/
The retail sector needs a cybersecurity talent incubator

Nov 14, 2025 12:49 PM

Tags: attack, cyber, cybersecurity, data-breach

Retailers are exposed to cyber attacks and personnel, not tech, is the answer. First seen on cyberscoop.com Jump to article: cyberscoop.com/retail-cybersecurity-crisis-nrf-leadership-talent-pipeline-op-ed/
Washington Post notifies 10,000 individuals affected in Oracle-linked data theft

Nov 14, 2025 10:49 AM

Tags: data, data-breach, finance, oracle, theft, threat

The Washington Post alerts nearly 10,000 employees and contractors that personal and financial data was exposed in the Oracle breach. The Washington Post warns nearly 10,000 staff and contractors that personal and financial data was exposed in the Oracle breach. The popular newspaper has approximately 2.5M digital subscribers. Between July 10 and August 22, threat…
Washington Post Oracle E-Suite Breach Exposes Data of Over 9,000 Staff and Contractors

Nov 14, 2025 10:49 AM

Tags: breach, cyber, data, data-breach, oracle

The Washington Post disclosed a significant data breach affecting more than 9,700 employees and contractors following an external system compromise targeting its Oracle E-Suite infrastructure. The breach, which occurred on July 10, 2025, went undetected for nearly 3.5 months before being discovered on October 27, 2025. Scope of the Incident According to breach notifications filed…
Checkout.com Suffers Data Breach as ShinyHunters Attack Cloud Storage

Nov 14, 2025 7:49 AM

Tags: attack, breach, cloud, cyber, cybercrime, data, data-breach, group

Payment processor Checkout.com recently experienced a data breach after being targeted by the cybercrime group “ShinyHunters.” The attackers accessed old data stored in a third-party cloud system. Luckily, Checkout.com’s live payment processing environment was not affected, and no merchant funds or card numbers were accessed. The company revealed that the breach happened last week when…
DoorDash hit by new data breach in October exposing user information

Nov 14, 2025 6:49 AM

Tags: breach, data, data-breach

DoorDash has disclosed a data breach that hit the food delivery platform this October. Beginning yesterday evening, DoorDash, which serves millions of customers across the U.S., Canada, Australia, and New Zealand, started emailing those impacted by the newly disclosed security incident. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/doordash-hit-by-new-data-breach-in-october-exposing-user-information/
DoorDash hit by yet another data breach this October

Nov 14, 2025 5:49 AM

Tags: breach, data, data-breach

DoorDash has disclosed a data breach that hit the food delivery platform this October. Beginning yesterday evening, DoorDash, which serves millions of customers across the U.S., Canada, Australia, and New Zealand, started emailing those impacted by the newly disclosed security incident. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/doordash-hit-by-yet-another-data-breach-this-october/
Fortinet FortiWeb flaw with public PoC exploited to create admin users

Nov 14, 2025 5:49 AM

Tags: authentication, data-breach, exploit, flaw, fortinet, vulnerability

A Fortinet FortiWeb path traversal vulnerability is being actively exploited to create new administrative users on exposed devices without requiring authentication First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fortiweb-flaw-with-public-poc-actively-exploited-to-create-admin-users/
Feds Fumble Cisco Patches as China-Linked Hackers Strike

Nov 13, 2025 11:49 PM

Tags: china, cisa, cisco, cyber, data-breach, defense, exploit, firewall, flaw, hacker, network, threat, update

CISA Says Agencies Believed They Patched Cisco Flaws But Had Not. The U.S. cyber defense agency issued new patch guidance after discovering multiple federal agencies failed to properly secure Cisco firewalls, leaving federal networks exposed to exploitation by a suspected Chinese threat actor despite a prior emergency directive. First seen on govinfosecurity.com Jump to article:…
ChatGPT Exploited Through SSRF Flaw in Custom GPT Actions

Nov 13, 2025 7:50 PM

Tags: ai, chatgpt, cloud, data-breach, exploit, flaw

A patched SSRF flaw in ChatGPT’s Custom GPTs exposed how AI features can unintentionally reveal sensitive cloud metadata. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/artificial-intelligence/chatgpt-exploited-through-ssrf-flaw-in-custom-gpt-actions/
Washington Post data breach impacts nearly 10K employees, contractors

Nov 13, 2025 5:49 PM

Tags: breach, data, data-breach, finance, oracle, theft

The Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/washington-post-data-breach-impacts-nearly-10k-employees-contractors/
Washington Post data breach impacts nearly 10K employees, contractors

Nov 13, 2025 5:49 PM

Tags: breach, data, data-breach, finance, oracle, theft

The Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/washington-post-data-breach-impacts-nearly-10k-employees-contractors/
NDSS 2025 Power-Related Side-Channel Attacks Using The Android Sensor Framework

Nov 13, 2025 5:49 PM

Tags: access, android, attack, browser, chrome, computer, conference, data-breach, exploit, framework, google, Internet, mobile, network, side-channel, threat

SESSION Session 2D: Android Security 1 Authors, Creators & Presenters: Mathias Oberhuber (Graz University of Technology), Martin Unterguggenberger (Graz University of Technology), Lukas Maar (Graz University of Technology), Andreas Kogler (Graz University of Technology), Stefan Mangard (Graz University of Technology) PAPER Power-Related Side-Channel Attacks using the Android Sensor Framework Software-based power side-channel attacks are a…
How Rapid AI Adoption Is Creating an Exposure Gap

Nov 13, 2025 5:49 PM

Tags: access, ai, attack, best-practice, breach, business, cloud, compliance, control, cybersecurity, data, data-breach, defense, encryption, exploit, framework, identity, nist, risk, risk-assessment, risk-management, service, strategy, threat, tool, vulnerability

As organizations rush to deploy AI, enterprise defenses are struggling to keep up. This blog explores the emerging AI exposure gap, the widening divide between innovation and protection, and what security leaders can do to close it. Key takeaways: The AI exposure gap is widening as most organizations adopt AI faster than they can secure…
NDSS 2025 Power-Related Side-Channel Attacks Using The Android Sensor Framework

Nov 13, 2025 5:49 PM

Tags: access, android, attack, browser, chrome, computer, conference, data-breach, exploit, framework, google, Internet, mobile, network, side-channel, threat

SESSION Session 2D: Android Security 1 Authors, Creators & Presenters: Mathias Oberhuber (Graz University of Technology), Martin Unterguggenberger (Graz University of Technology), Lukas Maar (Graz University of Technology), Andreas Kogler (Graz University of Technology), Stefan Mangard (Graz University of Technology) PAPER Power-Related Side-Channel Attacks using the Android Sensor Framework Software-based power side-channel attacks are a…
>>Patched<< but still exposed: US federal agencies must remediate Cisco flaws (again)

Nov 13, 2025 3:49 PM

Tags: cisa, cisco, cve, data-breach, exploit, flaw, vulnerability

CISA has ordered US federal agencies to fully address two actively exploited vulnerabilities (CVE-2025-20333, CVE-2025-20362) in Cisco Adaptive Security Appliances (ASA) and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/13/cisa-directive-cve-2025-20333-cve-2025-20362/