Tag: data-breach
-
Breach Roundup: FTC Sues Sendit Over Kid’s Data Collection
Also, Cyberattack Disrupts Asahi’s Japan Operations, Halts Production. This week, FTC sued Sendit, another Harrods breach, Allianz data breach and a cyberattack disrupted Asahi’s Japan operations. WestJet disclosed data theft. Hackers targeted Kido Nursery chain, a VMware privilege escalation flaw was exploited as zero-day, DarkCloud infostealer resurfaced. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-ftc-sues-sendit-over-kids-data-collection-a-29625
-
Breach Roundup: FTC Sues Sendit Over Kid’s Data Collection
Also, Cyberattack Disrupts Asahi’s Japan Operations, Halts Production. This week, FTC sued Sendit, another Harrods breach, Allianz data breach and a cyberattack disrupted Asahi’s Japan operations. WestJet disclosed data theft. Hackers targeted Kido Nursery chain, a VMware privilege escalation flaw was exploited as zero-day, DarkCloud infostealer resurfaced. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-ftc-sues-sendit-over-kids-data-collection-a-29625
-
Renault UK Customer Records Stolen in Third-Party Breach
Renault UK warns customers of a third-party data breach exposing personal details, stressing vigilance against fraud and confirming no bank data lost. First seen on hackread.com Jump to article: hackread.com/renault-uk-customers-third-party-data-breach/
-
Hackers are sending extortion emails to executives after claiming Oracle apps’ data breach
Google says hackers associated with the Clop ransomware gang are emailing executives at multiple organizations claiming to have stolen their personal information from a suite of Oracle E-Business apps. First seen on techcrunch.com Jump to article: techcrunch.com/2025/10/02/hackers-are-sending-extortion-emails-to-executives-after-claiming-oracle-apps-data-breach/
-
Allianz Life data breach impacted 1.5 Million people
Allianz Life breach exposed data of 1.5M people, including names, addresses, birth dates, and Social Security numbers stolen from a cloud CRM. In July, Allianz Life disclosed a breach where hackers stole data from a cloud database, affecting most of its customers and staff. In August, the data breach notification site Have I Been Pwned reported 1.1M impacted,…
-
Forrester: Agentic AI-Powered Breach Will Happen in 2026
Forrester predicts agentic AI will be responsible for a major data breach in 2026 First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/forrester-agentic-ai-breach-2026/
-
Datenleck: Schufa-Tochter Bonify bestätigt Sicherheitsvorfall
Unbekannte erbeuten Identifizierungsdaten von Bonify-Nutzern. Darunter sind auch Ausweisdaten und Fotos. First seen on golem.de Jump to article: www.golem.de/news/datenleck-schufa-tochter-bonify-bestaetigt-sicherheitsvorfall-2510-200731.html
-
WestJet Confirms Passenger IDs and Passports Stolen in Cyberattack
WestJet confirms a data breach starting June 13, 2025, stole passport/ID and personal data. Credit cards and passwords are safe. The airline offers 24 months of free identity monitoring, including $1M insurance. First seen on hackread.com Jump to article: hackread.com/westjet-cyberattack-passenger-ids-passports-stolen/
-
Data breach at dealership software provider impacts 766k clients
A ransomware attack at Motility Software Solutions, a provider of dealer management software (DMS), has exposed the sensitive data of 766,000 customers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/data-breach-at-dealership-software-provider-impacts-766k-clients/
-
Adobe Analytics bug leaked customer tracking data to other tenants
Adobe is warning its Analytics customers that an ingestion bug caused data from some organizations to appear in the analytics instances of others for approximately one day. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/adobe-analytics-bug-leaked-customer-tracking-data-to-other-tenants/
-
1.2 million people had information stolen during cyberattack on WestJet
Canadian airline WestJet disclosed to regulators that a data breach earlier this year exposed the information of about 1.2 million people. First seen on therecord.media Jump to article: therecord.media/westjet-data-breach-disclosures
-
1.2 million people had information stolen during cyberattack on WestJet
Canadian airline WestJet disclosed to regulators that a data breach earlier this year exposed the information of about 1.2 million people. First seen on therecord.media Jump to article: therecord.media/westjet-data-breach-disclosures
-
Docker APIs Targeted FireTail Blog
Sep 30, 2025 – Lina Romero – In 2025’s fast-moving cyber landscape, attacks are everywhere and AI and APIs are the biggest targets. We’ve spoken before about hackers exploiting Docker Swarm to launch cryptomining attacks, but now attackers are using Docker APIs for other malicious purposes. It started this June. Trend Micro noticed abnormal activity…
-
WestJet confirms recent breach exposed customers’ passports
Canadian airline WestJet is informing customers that the cyberattack disclosed in June compromised their sensitive information, including passports and ID documents. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/westjet-confirms-recent-breach-exposed-customers-passports/
-
Nearly 50,000 Cisco firewalls vulnerable to actively exploited flaws
Roughly 48,800 Cisco Adaptive Security Appliance (ASA) and Firewall Threat Defense (FTD) appliances exposed on the public web are vulnerable to two vulnerabilities actively leveraged by hackers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/nearly-50-000-cisco-firewalls-vulnerable-to-actively-exploited-flaws/
-
Warnings about Cisco vulns under active exploit are falling on deaf ears
50,000 firewall devices still exposed First seen on theregister.com Jump to article: www.theregister.com/2025/09/30/cisco_firewall_vulns/
-
Hack of US Surveillance Provider RemoteCOM Exposes Court Data
A massive data breach at RemoteCOM exposed 14,000 personal files and police contacts from the SCOUT software. Learn what this aggressive spyware records, and the high risks for all involved parties. First seen on hackread.com Jump to article: hackread.com/us-surveillance-remotecom-hack-court-data/
-
US Auto Insurance Platform ClaimPix Leaked 10.7TB of Records Online
Cybersecurity researcher Jeremiah Fowler discovered a massive 10.7TB ClaimPix leak exposing 5.1M customer files, vehicle data, and Power of Attorney documents. Read the full details. First seen on hackread.com Jump to article: hackread.com/us-auto-insurance-claimpix-leaked-10tb-records/
-
Datenleck bei Kido-Kindergärten
Eine Ransomware-Bande hat die Daten von mehr als 8.000 Kindern der Kido-Kindergärten gestohlen.Die Ransomware-Bande Randiant veröffentlichte kürzlich einen Darknet-Post mit Hinweisen auf einen Angriff auf den britischen Kindertagesstättenbetreiber Kido. Berichten zufolge haben die Täter als Beweis dafür Namen, Fotos, Adressen und familiäre Kontaktdaten von zehn Kindern hochgeladen, die eine der 18 Kido-Kitas im Großraum London…
-
Researchers Disclose Google Gemini AI Flaws Allowing Prompt Injection and Cloud Exploits
Tags: ai, attack, cloud, cybersecurity, data, data-breach, exploit, flaw, google, injection, intelligence, privacy, risk, vulnerabilityCybersecurity researchers have disclosed three now-patched security vulnerabilities impacting Google’s Gemini artificial intelligence (AI) assistant that, if successfully exploited, could have exposed users to major privacy risks and data theft.”They made Gemini vulnerable to search-injection attacks on its Search Personalization Model; log-to-prompt injection attacks against Gemini Cloud First seen on thehackernews.com Jump to article: thehackernews.com/2025/09/researchers-disclose-google-gemini-ai.html
-
Harrods Data Breach Explained
On Friday, September 2627, 2025 (UK time), Harrods warned that a third-party provider suffered an intrusion that exposed some online customers’ basic personal details (names and contact information). Harrods says its own systems weren’t breached, payment data and passwords weren’t taken, and the incident is separate from hacking activity it faced earlier this year. Authorities……
-
Harrods Data Breach Explained
On Friday, September 2627, 2025 (UK time), Harrods warned that a third-party provider suffered an intrusion that exposed some online customers’ basic personal details (names and contact information). Harrods says its own systems weren’t breached, payment data and passwords weren’t taken, and the incident is separate from hacking activity it faced earlier this year. Authorities……
-
Harrods Data Breach Explained
On Friday, September 2627, 2025 (UK time), Harrods warned that a third-party provider suffered an intrusion that exposed some online customers’ basic personal details (names and contact information). Harrods says its own systems weren’t breached, payment data and passwords weren’t taken, and the incident is separate from hacking activity it faced earlier this year. Authorities……
-
Malicious Code in Fake Postmark MCP Server Steals Thousands of Emails
A newly discovered attack on the npm ecosystem has exposed a deceptive backdoor embedded in a malicious package impersonating Postmark. The package, named postmark-mcp, quietly siphoned off thousands of emails from unsuspecting developers and organizations, all with just one line of code. Over the course of 15 incremental releases, the threat actor behind postmark-mcp built…
-
New Harrods Data Breach Leaks Personal Information of 430,000 Customers
Luxury department store Harrods has become the latest victim of a significant cybersecurity incident after hackers successfully accessed personal data belonging to 430,000 customers. The prestigious London retailer confirmed that threat actors contacted the company following the breach, though Harrods has stated it will not engage with the attackers. Limited Data Exposure The compromised information was obtained from…
-
KI-Gefahren rücken Integritätsschutz in den Mittelpunkt
Tags: ai, ciso, cloud, compliance, cyberattack, data, data-breach, DSGVO, exploit, governance, injection, LLM, ml, risk, tool, training, updateData Poisoning gefährdet die Integrität von KI-Modellen.Für CISOs reduziert KI selten die Komplexität, sondern füllt vielmehr ihre ohnehin schon volle Agenda. Neben den traditionellen Sicherheitsprioritäten müssen sie sich nun auch mit neuen KI-bedingten Risiken auseinandersetzen, etwa wenn KI-Lösungen unkontrolliert für geschäftliche Zwecke genutzt, Modelle manipuliert und neue Vorschriften nicht eingehalten werden. Eine der drängendsten Herausforderungen…
-
Harrods Data Breach: 430,000 Customer Records Stolen Via Third-Party Attack
Luxury retailer Harrods confirms 430,000 customer records (names, contacts) were stolen from a third-party provider in the latest UK retail cyberattack wave. First seen on hackread.com Jump to article: hackread.com/harrods-data-breach-records-stolen-third-party-attack/
-
Harrods suffers new data breach exposing 430,000 customer records
UK retail giant Harrods has disclosed a new cybersecurity incident after hackers compromised a third-party supplier and stole 430,000 records with sensitive e-commerce customer information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/harrods-suffers-new-data-breach-exposing-430-000-customer-records/
-
Harrods alerts customers to new data breach linked to third-party provider
British Department Store Harrods warns customers of a data breach via a third-party provider, exposing some names and contact details. Harrods, the luxury British department store, warned customers of a data breach affecting its online systems. The company confirmed that names and contact details of some e-commerce customers were exposed after one of its third-party…
-
Expired protections, exposed networks: The stakes of CISA’s sunset
Congress needs to reauthorize the information-sharing law and build a modernized framework for collaborative cyber defense. First seen on cyberscoop.com Jump to article: cyberscoop.com/cybersecurity-information-sharing-act-expiration-date/