Collecting Cyber-News from over 60 sources

Tag: leak

University of HawaiÊ»i Cancer Center confirms data leak following ransomware attack

Mar 2, 2026 8:47 PM

Tags: attack, breach, data, leak, ransomware

Part of the breach was traced back to a Multiethnic Cohort (MEC) Study established in 1993, which used driver’s license numbers and voter registration records to recruit participants. First seen on therecord.media Jump to article: therecord.media/university-of-hawaii-ransomware-data-breach
South Korean Tax Agency Leak Leads to $4.8M Crypto Theft

Mar 2, 2026 4:49 PM

Tags: crypto, data-breach, leak, theft

A South Korean tax agency press release exposed a seized wallet’s seed phrase, enabling a $4.8 million cryptocurrency theft. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/south-korean-tax-agency-leak-leads-to-4-8m-crypto-theft/
Innovation without exposure: A CISO’s secure-by-design framework for business outcomes

Mar 2, 2026 1:47 PM

Tags: ai, authentication, awareness, business, chatgpt, cisa, ciso, cloud, control, cyber, cybersecurity, data, detection, firmware, framework, fraud, governance, identity, injection, iot, law, leak, LLM, metric, mitre, network, nist, offense, radius, RedTeam, resilience, risk, risk-management, service, social-engineering, threat, tool, unauthorized, update

A detection engineer owning “detection as code” patterns and test harnessesA threat hunter owning telemetry quality improvements and query optimizationAn incident responder owning tabletop iterations and runbook hardeningA cloud security lead owning guardrailed landing zone enhancementsThe critical constraint is this: every experiment needs an exit plan. Either it becomes a supported capability, or it is…
ShinyHunters Leak 2M Records From Dutch Telecom Odido, Claim 21M Stolen

Feb 27, 2026 8:36 PM

Tags: breach, hacker, leak, ransom

ShinyHunters hackers leak 2 million records from Dutch telecom Odido after ransom refusal, claiming up to 21 million customer records were stolen in the breach. First seen on hackread.com Jump to article: hackread.com/shinyhunters-leak-dutch-telecom-odido-data/
Cops back Dutch telco Odido after second wave of ShinyHunters leaks

Feb 27, 2026 3:37 PM

Tags: leak, ransom

Company refuses to pay ransom as attackers threaten larger daily dumps First seen on theregister.com Jump to article: www.theregister.com/2026/02/27/odido_shinyhunters_leaks/
Industrial networks continue to leak onto the internet

Feb 27, 2026 7:37 AM

Tags: access, automation, Internet, leak, network, service, technology

Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/27/ot-internet-exposure-cybersecurity-risk/
Google API Keys Leak Sensitive Data Without Warning via Gemini

Feb 27, 2026 6:37 AM

Tags: access, ai, api, cyber, data, flaw, google, leak, unauthorized, vulnerability

Security researchers at Truffle Security discovered that legacy public-facing Google API keys can silently gain unauthorized access to Google’s sensitive Gemini AI endpoints. This flaw exposes private files, cached data, and billable AI usage to attackers without any warning or notification to developers. The vulnerability highlights the severe danger of retrofitting modern AI capabilities onto…
Microsoft Copilot DLP Bypass: A Data Trust Wake-Up Call for AI Security

Feb 26, 2026 9:36 PM

Tags: access, ai, business, ciso, cloud, compliance, control, data, data-breach, detection, email, endpoint, infrastructure, leak, microsoft, monitoring, risk, risk-management, saas, tool

When Microsoft confirmed that a bug allowed Copilot to surface and summarize emails marked confidential despite existing DLP controls, it reignited urgent questions about Microsoft Copilot security, DLP bypass risk and enterprise AI data protection. The reaction was immediate. For many CISOs and security leaders responsible for Microsoft 365 security and AI risk management, it…
Olympique Marseille confirms ‘attempted’ cyberattack after data leak

Feb 26, 2026 5:37 PM

Tags: cyberattack, data, leak, threat

French professional football club Olympique de Marseille has confirmed a cyberattack after a threat actor claimed on Monday that it breached the club’s systems earlier this month. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/olympique-marseille-football-club-confirms-cyberattack-after-data-leak/
ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump

Feb 25, 2026 11:37 PM

Tags: data, data-breach, extortion, leak, phishing, risk

ShinyHunters allegedly leaked 12.4 million CarGurus records, exposing personal and financing data and raising risks of phishing and data extortion attacks. The post ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-shinyhunters-cargurus-data-leak-12-million-records/
Chinese prosecutors raise alarm about growth of domestic IP theft

Feb 25, 2026 4:37 PM

Tags: china, espionage, leak, technology, theft

China’s top prosecutorial agency said authorities have handled hundreds of domestic cases involving commercial espionage and technology leaks since 2021. First seen on therecord.media Jump to article: therecord.media/china-domestic-ip-theft-crackdown
12.4 Million Accounts Exposed in CarGurus Leak

Feb 25, 2026 4:37 PM

Tags: data-breach, fraud, leak, phishing

ShinyHunters’ alleged CarGurus leak exposed 12.4 million accounts, heightening phishing and fraud risks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/12-4-million-accounts-exposed-in-cargurus-leak/
The Coming Regulatory Wave for AI Agents Their APIs

Feb 24, 2026 6:00 PM

Tags: access, ai, api, attack, ciso, compliance, control, corporate, data, endpoint, finance, framework, governance, guide, infrastructure, leak, monitoring, regulation, risk, tool

For the past two years, the adoption of Generative AI has felt like a gold rush. Organizations raced to integrate Large Language Models and build autonomous agents to assist employees. They often bypassed standard governance processes in the name of speed and innovation. That era of unrestricted experimentation is rapidly drawing to a close. A…
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps

Feb 24, 2026 6:00 PM

Tags: ai, ciso, data, leak, risk, skills

CISOs see AI as necessary but insufficient and fraught with risks, a new report found. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/in-the-ai-era-cisos-worry-about-data-leaks-and-doubt-tech-will-solve-skill/812964/
The rise of the evasive adversary

Feb 24, 2026 8:01 AM

Tags: access, ai, attack, authentication, breach, china, cloud, credentials, crime, crowdstrike, crypto, data, defense, endpoint, exploit, finance, firewall, group, identity, infrastructure, intelligence, korea, lazarus, leak, mail, malicious, malware, microsoft, monitoring, network, north-korea, open-source, phishing, ransomware, remote-code-execution, russia, saas, service, software, strategy, supply-chain, tactics, theft, threat, tool, update, vpn, vulnerability, windows, zero-day

Big game hunters tighten their grip: CrowdStrike’s research highlights how big game hunting (BGH) ransomware actors have remained the dominant force in the eCrime landscape.Punk Spider, a group responsible for developing and maintaining Russian-language Akira ransomware, and its associated Akira dedicated leak site, conducted 198 intrusions in 2025, a 134% increase year over year. Victim-shaming operations…
PayPal Confirms Six-Month Data Exposure Linked to Loan System Error

Feb 23, 2026 5:02 PM

Tags: data, data-breach, finance, leak

PayPal has confirmed a data leak in its Working Capital loan system that exposed names, dates of birth, and Social Security numbers for six months. First seen on hackread.com Jump to article: hackread.com/paypal-confirms-loan-system-error-data-exposure/
Protecting AI Security: 2025 Hot Security Incident

Feb 23, 2026 1:01 PM

Tags: ai, cyber, data, github, leak, malicious, network, security-incident, vulnerability

GitHub MCP Cross-Repository Data Leak Vulnerability In May 2025, Invariant disclosed a critical vulnerability in GitHub’s Machine Collaboration Protocol (MCP), where attackers embedded malicious commands within public repository Issues to hijack developers’ locally running AI Agents. When an AI Agent was triggered to read and “assist” in processing the Issue, it indiscriminately executed the embedded…The…
PayPal discloses extended data leak linked to Loan App glitch

Feb 21, 2026 12:02 AM

Tags: breach, business, data, data-breach, email, finance, flaw, leak, phone, software

PayPal disclosed a six-month data breach that exposed sensitive user data, including Social Security numbers, due to a software error. PayPal has disclosed a data breach caused by a software bug in its PayPal Working Capital loan app. The flaw exposed sensitive customer information, including customers’ business contact details (name, email, phone number, address), along…
ShinyHunters demands $1.5M not to leak Vegas casino and resort chain data

Feb 20, 2026 8:02 PM

Tags: data, leak

What happens in Vegas”¦ First seen on theregister.com Jump to article: www.theregister.com/2026/02/20/shinyhunters_wynn_resorts/
What the Nike Breach Teaches Us About the Microsegmentation Imperative of Integrating with EDR

Feb 20, 2026 12:02 PM

Tags: breach, dark-web, edr, leak

At 14:37 UTC on January 22, 2026, Nike appeared on WorldLeaks’ Tor-based leak site. The countdown timer showed 48 hours until 1.4 terabytes, 188,347 files, would be dumped onto the dark web for anyone to download. Included in the trove of files are assets from Nike’s research and development (R&D) and product creation… First seen…
Leak-Check im Alltag: Wie sich feststellen lässt, ob personenbezogene Daten im Umlauf sind, ohne in Panik zu verfallen

Feb 20, 2026 11:01 AM

Tags: Internet, leak

Ein Leak-Check hilft dabei, zu prüfen, ob die Daten einer Person ungewollt von Cyberkriminellen im Internet verbreitet wurden. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/gast-artikel/leak-check-im-alltag-wie-sich-feststellen-laesst-ob-personenbezogene-daten-im-umlauf-sind-ohne-in-panik-zu-verfallen-326083.html
Datenleck-Websites: Das Druckmittel der Ransomware-Bande von heute

Feb 20, 2026 10:01 AM

Tags: data-breach, leak, ransomware

Wenn Unternehmensdaten auf einer Leak-Site offengelegt werden, kann dies langfristige Folgen haben First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/ransomware/datenleck-websites-das-druckmittel-der-ransomware-bande-von-heute/
ShinyHunters claims it drove off with 1.7M CarGurus records

Feb 19, 2026 6:01 PM

Tags: data, leak

Latest in a rash of grab-and-leak data incidents First seen on theregister.com Jump to article: www.theregister.com/2026/02/18/shinyhunters_cargurus_breach/
ThreatsDay Bulletin: OpenSSL RCE, Foxit 0-Days, Copilot Leak, AI Password Flaws & 20+ Stories

Feb 19, 2026 4:01 PM

Tags: ai, cyber, flaw, leak, password, rce, remote-code-execution, risk, tactics, threat, tool, zero-day

The cyber threat space doesn’t pause, and this week makes that clear. New risks, new tactics, and new security gaps are showing up across platforms, tools, and industries, often all at the same time.Some developments are headline-level. Others sit in the background but carry long-term impact. Together, they shape how defenders need to think about…
Figure Breach Enters New Phase After Data Leak Claims

Feb 19, 2026 12:00 AM

Tags: breach, data, data-breach, fintech, leak, risk, security-incident, technology

The data breach disclosed by fintech lender Figure Technology Solutions is moving beyond a contained security incident, as reports that stolen customer information is circulating online coincide with early legal investigations. The developments mark the point where an internal breach begins to create broader consumer risk and potential liability. Latest Developments Data associated with the……
ShinyHunters allegedly drove off with 1.7M CarGurus records

Feb 18, 2026 10:01 PM

Tags: data, leak

Latest in a rash of grab-and-leak data incidents First seen on theregister.com Jump to article: www.theregister.com/2026/02/18/shinyhunters_cargurus_breach/
A new approach for GenAI risk protection

Feb 18, 2026 11:58 AM

Tags: ai, attack, business, chatgpt, cisco, ciso, control, crowdstrike, cybersecurity, data, detection, edr, Internet, leak, microsoft, network, risk, threat, tool, training

Solution 1: GenAI enterprise model: Implement enterprise licenses for approved GenAI solutions (such as ChatGPT Enterprise or Microsoft CoPilot 365, which is integrated into existing O365 tenants). Enterprise GenAI solutions typically include a robust set of built-in security tools that allow organizations to secure their data and implement DLP controls within the enterprise GenAI solution…
0APT Ransomware Group Claims 200 Victims, Fails to Provide Proof

Feb 17, 2026 7:58 AM

Tags: cyber, dark-web, data, group, leak, ransomware, service

A new ransomware-as-a-service (RaaS) outfit calling itself 0APT has quickly drawn attention for all the wrong reasons, after loudly claiming to have compromised around 200 victims while failing to provide any verifiable proof of compromise. Emerging on or around January 28, 2026, the group launched a dark web data leak site (DLS) and rapidly populated it with…
Man arrested for demanding reward after accidental police data leak

Feb 16, 2026 8:58 PM

Tags: data, leak

Dutch authorities arrested a 40-year-old man after he downloaded confidential documents that had been mistakenly shared by the police and refused to delete them unless he received “something in return.” First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/man-arrested-for-demanding-reward-after-accidental-police-data-leak/
Canada Goose ruffles feathers over 600K record dump, says leak is old news

Feb 16, 2026 7:58 PM

Tags: leak

Fashion brand latest to succumb to ShinyHunters’ tricks First seen on theregister.com Jump to article: www.theregister.com/2026/02/16/canada_goose_shinyhunters/