Tag: leak

NCSC Warns UK Organisations to Prepare for Potential Iran-Linked Cyber Activity

Mar 4, 2026 5:46 AM

Tags: advisory, attack, awareness, breach, business, china, cyber, cybercrime, data, data-breach, espionage, exploit, finance, government, group, incident response, infrastructure, international, Internet, iran, leak, malware, middle-east, military, monitoring, phishing, resilience, risk, russia, service, supply-chain, tactics, threat, tool, update, vulnerability, vulnerability-management

Geopolitical conflict rarely stays confined to physical battlefields. Increasingly, it spills into the digital domain. The latest escalation of tensions in the Middle East has prompted the UK’s National Cyber Security Centre (NCSC) to issue a warning to organisations to review their cyber security posture and prepare for possible cyber activity linked to Iran. While…
Vehicle Tire Pressure Sensors Enable Silent Tracking

Mar 3, 2026 10:47 PM

Tags: data, leak, threat

Like many other features and systems in modern cars, tire pressure sensors leak sensitive data that can be abused by threat actors. First seen on darkreading.com Jump to article: www.darkreading.com/ics-ot-security/tire-pressure-sensors-silent-tracking
Ariomex, Iran-based crypto exchange, suffers data leak

Mar 3, 2026 9:48 PM

Tags: crypto, cybersecurity, data, data-breach, iran, leak

Resecurity says Iran’s Ariomex crypto exchange suffered a data leak exposing user and transaction data from 2022 to 2025. Resecurity (USA) reports that Ariomex’s database, one of Iran’s cryptocurrency exchange platforms, suffered a data leak. The report published by the cybersecurity company presents the findings of a structured analysis of the leaked database, which contains…
Hacktivists Claim DHS Breach, Leak 6,600+ ICE Contractor Records

Mar 3, 2026 6:47 PM

Tags: breach, defense, leak

Hacktivists claim they breached DHS systems, leaking records tied to 6,681 ICE contractor applicants, including major tech and defense firms. The post Hacktivists Claim DHS Breach, Leak 6,600+ ICE Contractor Records appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-dhs-ice-contractor-data-leak-hacktivist-claim/
Protecting Developers Means Protecting Their Secrets

Mar 3, 2026 5:47 PM

Tags: leak, supply-chain

Secrets don’t just leak from Git. They accumulate in filesystems, env vars, and agent memory. See how to find them, stop the bleed, and protect your whole supply chain First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/protecting-developers-means-protecting-their-secrets/
LexisNexis confirms data breach as hackers leak stolen files

Mar 3, 2026 5:47 PM

Tags: breach, business, data, data-breach, hacker, leak

American data analytics company LexisNexis Legal & Professional has confirmed to BleepingComputer that hackers breached its servers and accessed some customer and business information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files/
Cybercriminals swipe 15.8M medical records from French doctors ministry

Mar 3, 2026 12:47 PM

Tags: cybercrime, leak, software

Third-party software supplier breached leading to leak of doctors’ notes First seen on theregister.com Jump to article: www.theregister.com/2026/03/03/french_medical_leak/
Operation Epic Fury: Potential Iranian Cyber Counteroffensive Operations

Mar 3, 2026 9:47 AM

Tags: access, attack, botnet, credentials, cyber, data, ddos, defense, espionage, exploit, government, group, infrastructure, intelligence, Internet, iran, leak, malware, military, monitoring, ransomware, service, social-engineering, technology, theft, threat, tool, update, vulnerability

Following the joint military operation known as Operation Epic Fury, the Tenable Research Special Operations (RSO) team is providing an update regarding potential cyber counteroffensive operations conducted by Iran-linked threat actors. Key takeaways: Following Operation Epic Fury, Iran-linked threat actors are expected to launch counteroffensive operations against critical infrastructure and opportunistic targets. Several Iranian-linked threat…
Cyber Battlefield: Ariomex, Iran-Based Crypto Exchange, Suffers Data Leak

Mar 3, 2026 5:47 AM

Tags: crypto, cyber, data, iran, leak

First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/cyber-battlefield-ariomex-iran-based-crypto-exchange-suffers-data-leak
University of HawaiÊ»i Cancer Center confirms data leak following ransomware attack

Mar 2, 2026 8:47 PM

Tags: attack, breach, data, leak, ransomware

Part of the breach was traced back to a Multiethnic Cohort (MEC) Study established in 1993, which used driver’s license numbers and voter registration records to recruit participants. First seen on therecord.media Jump to article: therecord.media/university-of-hawaii-ransomware-data-breach
South Korean Tax Agency Leak Leads to $4.8M Crypto Theft

Mar 2, 2026 4:49 PM

Tags: crypto, data-breach, leak, theft

A South Korean tax agency press release exposed a seized wallet’s seed phrase, enabling a $4.8 million cryptocurrency theft. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/south-korean-tax-agency-leak-leads-to-4-8m-crypto-theft/
Innovation without exposure: A CISO’s secure-by-design framework for business outcomes

Mar 2, 2026 1:47 PM

Tags: ai, authentication, awareness, business, chatgpt, cisa, ciso, cloud, control, cyber, cybersecurity, data, detection, firmware, framework, fraud, governance, identity, injection, iot, law, leak, LLM, metric, mitre, network, nist, offense, radius, RedTeam, resilience, risk, risk-management, service, social-engineering, threat, tool, unauthorized, update

A detection engineer owning “detection as code” patterns and test harnessesA threat hunter owning telemetry quality improvements and query optimizationAn incident responder owning tabletop iterations and runbook hardeningA cloud security lead owning guardrailed landing zone enhancementsThe critical constraint is this: every experiment needs an exit plan. Either it becomes a supported capability, or it is…
ShinyHunters Leak 2M Records From Dutch Telecom Odido, Claim 21M Stolen

Feb 27, 2026 8:36 PM

Tags: breach, hacker, leak, ransom

ShinyHunters hackers leak 2 million records from Dutch telecom Odido after ransom refusal, claiming up to 21 million customer records were stolen in the breach. First seen on hackread.com Jump to article: hackread.com/shinyhunters-leak-dutch-telecom-odido-data/
Cops back Dutch telco Odido after second wave of ShinyHunters leaks

Feb 27, 2026 3:37 PM

Tags: leak, ransom

Company refuses to pay ransom as attackers threaten larger daily dumps First seen on theregister.com Jump to article: www.theregister.com/2026/02/27/odido_shinyhunters_leaks/
Industrial networks continue to leak onto the internet

Feb 27, 2026 7:37 AM

Tags: access, automation, Internet, leak, network, service, technology

Industrial operators continue to run remote access portals, building automation servers, and other operational technology services on public IP address ranges. Palo Alto … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/27/ot-internet-exposure-cybersecurity-risk/
Google API Keys Leak Sensitive Data Without Warning via Gemini

Feb 27, 2026 6:37 AM

Tags: access, ai, api, cyber, data, flaw, google, leak, unauthorized, vulnerability

Security researchers at Truffle Security discovered that legacy public-facing Google API keys can silently gain unauthorized access to Google’s sensitive Gemini AI endpoints. This flaw exposes private files, cached data, and billable AI usage to attackers without any warning or notification to developers. The vulnerability highlights the severe danger of retrofitting modern AI capabilities onto…
Microsoft Copilot DLP Bypass: A Data Trust Wake-Up Call for AI Security

Feb 26, 2026 9:36 PM

Tags: access, ai, business, ciso, cloud, compliance, control, data, data-breach, detection, email, endpoint, infrastructure, leak, microsoft, monitoring, risk, risk-management, saas, tool

When Microsoft confirmed that a bug allowed Copilot to surface and summarize emails marked confidential despite existing DLP controls, it reignited urgent questions about Microsoft Copilot security, DLP bypass risk and enterprise AI data protection. The reaction was immediate. For many CISOs and security leaders responsible for Microsoft 365 security and AI risk management, it…
Olympique Marseille confirms ‘attempted’ cyberattack after data leak

Feb 26, 2026 5:37 PM

Tags: cyberattack, data, leak, threat

French professional football club Olympique de Marseille has confirmed a cyberattack after a threat actor claimed on Monday that it breached the club’s systems earlier this month. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/olympique-marseille-football-club-confirms-cyberattack-after-data-leak/
ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump

Feb 25, 2026 11:37 PM

Tags: data, data-breach, extortion, leak, phishing, risk

ShinyHunters allegedly leaked 12.4 million CarGurus records, exposing personal and financing data and raising risks of phishing and data extortion attacks. The post ShinyHunters Leak 12.4 Million CarGurus Records in Massive Data Dump appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-shinyhunters-cargurus-data-leak-12-million-records/
Chinese prosecutors raise alarm about growth of domestic IP theft

Feb 25, 2026 4:37 PM

Tags: china, espionage, leak, technology, theft

China’s top prosecutorial agency said authorities have handled hundreds of domestic cases involving commercial espionage and technology leaks since 2021. First seen on therecord.media Jump to article: therecord.media/china-domestic-ip-theft-crackdown
12.4 Million Accounts Exposed in CarGurus Leak

Feb 25, 2026 4:37 PM

Tags: data-breach, fraud, leak, phishing

ShinyHunters’ alleged CarGurus leak exposed 12.4 million accounts, heightening phishing and fraud risks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/12-4-million-accounts-exposed-in-cargurus-leak/
The Coming Regulatory Wave for AI Agents Their APIs

Feb 24, 2026 6:00 PM

Tags: access, ai, api, attack, ciso, compliance, control, corporate, data, endpoint, finance, framework, governance, guide, infrastructure, leak, monitoring, regulation, risk, tool

For the past two years, the adoption of Generative AI has felt like a gold rush. Organizations raced to integrate Large Language Models and build autonomous agents to assist employees. They often bypassed standard governance processes in the name of speed and innovation. That era of unrestricted experimentation is rapidly drawing to a close. A…
In the AI era, CISOs worry about data leaks and doubt tech will solve skills gaps

Feb 24, 2026 6:00 PM

Tags: ai, ciso, data, leak, risk, skills

CISOs see AI as necessary but insufficient and fraught with risks, a new report found. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/in-the-ai-era-cisos-worry-about-data-leaks-and-doubt-tech-will-solve-skill/812964/
The rise of the evasive adversary

Feb 24, 2026 8:01 AM

Tags: access, ai, attack, authentication, breach, china, cloud, credentials, crime, crowdstrike, crypto, data, defense, endpoint, exploit, finance, firewall, group, identity, infrastructure, intelligence, korea, lazarus, leak, mail, malicious, malware, microsoft, monitoring, network, north-korea, open-source, phishing, ransomware, remote-code-execution, russia, saas, service, software, strategy, supply-chain, tactics, theft, threat, tool, update, vpn, vulnerability, windows, zero-day

Big game hunters tighten their grip: CrowdStrike’s research highlights how big game hunting (BGH) ransomware actors have remained the dominant force in the eCrime landscape.Punk Spider, a group responsible for developing and maintaining Russian-language Akira ransomware, and its associated Akira dedicated leak site, conducted 198 intrusions in 2025, a 134% increase year over year. Victim-shaming operations…
PayPal Confirms Six-Month Data Exposure Linked to Loan System Error

Feb 23, 2026 5:02 PM

Tags: data, data-breach, finance, leak

PayPal has confirmed a data leak in its Working Capital loan system that exposed names, dates of birth, and Social Security numbers for six months. First seen on hackread.com Jump to article: hackread.com/paypal-confirms-loan-system-error-data-exposure/
Protecting AI Security: 2025 Hot Security Incident

Feb 23, 2026 1:01 PM

Tags: ai, cyber, data, github, leak, malicious, network, security-incident, vulnerability

GitHub MCP Cross-Repository Data Leak Vulnerability In May 2025, Invariant disclosed a critical vulnerability in GitHub’s Machine Collaboration Protocol (MCP), where attackers embedded malicious commands within public repository Issues to hijack developers’ locally running AI Agents. When an AI Agent was triggered to read and “assist” in processing the Issue, it indiscriminately executed the embedded…The…
PayPal discloses extended data leak linked to Loan App glitch

Feb 21, 2026 12:02 AM

Tags: breach, business, data, data-breach, email, finance, flaw, leak, phone, software

PayPal disclosed a six-month data breach that exposed sensitive user data, including Social Security numbers, due to a software error. PayPal has disclosed a data breach caused by a software bug in its PayPal Working Capital loan app. The flaw exposed sensitive customer information, including customers’ business contact details (name, email, phone number, address), along…
ShinyHunters demands $1.5M not to leak Vegas casino and resort chain data

Feb 20, 2026 8:02 PM

Tags: data, leak

What happens in Vegas”¦ First seen on theregister.com Jump to article: www.theregister.com/2026/02/20/shinyhunters_wynn_resorts/
What the Nike Breach Teaches Us About the Microsegmentation Imperative of Integrating with EDR

Feb 20, 2026 12:02 PM

Tags: breach, dark-web, edr, leak

At 14:37 UTC on January 22, 2026, Nike appeared on WorldLeaks’ Tor-based leak site. The countdown timer showed 48 hours until 1.4 terabytes, 188,347 files, would be dumped onto the dark web for anyone to download. Included in the trove of files are assets from Nike’s research and development (R&D) and product creation… First seen…
Leak-Check im Alltag: Wie sich feststellen lässt, ob personenbezogene Daten im Umlauf sind, ohne in Panik zu verfallen

Feb 20, 2026 11:01 AM

Tags: Internet, leak

Ein Leak-Check hilft dabei, zu prüfen, ob die Daten einer Person ungewollt von Cyberkriminellen im Internet verbreitet wurden. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/gast-artikel/leak-check-im-alltag-wie-sich-feststellen-laesst-ob-personenbezogene-daten-im-umlauf-sind-ohne-in-panik-zu-verfallen-326083.html