Data Breach News - The Data Breach Times

June 24, 2025

868 views 59 secs 0

Critical Fortinet Vulnerabilities Exploited by the Qilin Ransomware Group

NetSec reports: The Qilin ransomware group has been noticed exploiting two critical vulnerabilities present in FortiOS/FortiProxy equipment. Although the group seems to be focusing on countries with Spanish language, it is likely that attacks exploiting these vulnerabilities will spread to other countries. The Qilin ransomware-as-a-service (RaaS) operation appeared in August 2022, known first as Agenda. Although it is not […]

June 24, 2025

1028 views 21 secs 0

Data of more than 740,000 stolen in ransomware attack on Michigan hospital network

The Record reports: Ransomware hackers stole the Social Security numbers and health insurance information for more than 740,000 people during an attack on a prominent Michigan hospital network. McLaren Health Care filed documents on Friday concerning a ransomware attack that took place in August 2024 — the second cyber incident to impact the healthcare giant in 12 months. The […]

Data Breach News, News

June 23, 2025

953 views 16 secs 0

AT&T to pay $177 million in data breach settlement affecting 109 million customers

Reuters reports: A U.S. judge granted preliminary approval on Friday to a $177-million settlement that resolves lawsuits against AT&T T.N over breaches in 2024 that exposed personal information belonging to tens of millions of the telecom company’s customers. U.S. District Judge Ada Brown in Dallas said in a ruling that the class-action settlement was fair and reasonable. […]

Data Breach News

June 23, 2025

870 views 46 secs 0

Oxford City Council Cyberattack: A Comprehensive Overview

Retaining decades worth of unencrypted personal information connected to the internet is a data breach disaster waiting to happen, as this report from DefendOps Diaries illustrates: The recent cyberattack on Oxford City Council has underscored the vulnerabilities inherent in managing vast amounts of historical data. Over the weekend of June 7 and 8, 2025, unauthorized access to […]

Data Breach News

June 20, 2025

865 views 7 secs 0

Aflac notifies SEC of breach suspected to be work of Scattered Spider

DataBreaches.net reports that Aflac has notified the Securities & Exchange Commission (SEC) of a data security incident. The incident did not involve ransomware, and appears to have the same characteristics as breaches at two other U.S. insurers this month: Erie Insurance and Philadelphi Insurance Companies. The group known as Scattered Spider is suspected of being […]

Data Breach News, News

June 20, 2025

983 views 24 secs 0

No, the 16 billion credentials leak is not a new data breach (1)

Bleeping Computer responds to headlines from another site: News broke today of a “mother of all breaches,” sparking wide media coverage filled with warnings and fear-mongering. However, it appears to be a compilation of previously leaked credentials stolen by infostealers, exposed in data breaches, and via credential stuffing attacks. To be clear, this is not a […]

Data Breach News

June 20, 2025

862 views 2 mins 0

Belk hit with pair of lawsuits over data breach and notification failure

The Charlotte Observer reports: Two lawsuits were filed this week in federal court against Belk for a data breach and then for allegedly concealing the cyberattack. In both cases, the plaintiffs are also seeking certification for class-action suits. Belk failed to protect sensitive personal current and former employee and customer information, according to the lawsuits, […]

Data Breach News, Malware Ransomware

June 19, 2025

964 views 11 secs 0

Have they no shame? Heartless gang targeted Krispy Kreme donuts (1)

SecurityWeek reports that heartless criminals targeted Krispy Kreme donuts last year: Donut and coffee retail chain Krispy Kreme has confirmed that the ransomware attack that came to light in late 2024 resulted in a data breach. Krispy Kreme revealed being hit by a cyberattack on December 11, saying that the incident had led to operational disruptions. Roughly […]

Data Breach News, Vendor News

June 18, 2025

643 views 57 secs 0

UBS data leak: UBS reports data breach after cyber attack on provider, client data unaffected

Reuters reports: Swiss bank UBS on Wednesday said it had suffered a data leak due to a cyber attack against one of its providers, but that no client data was affected. Swiss newspaper Le Temps said that files containing details of tens of thousands of UBS employees had been stolen from business service company Chain […]

Data Breach News

June 18, 2025

918 views 50 secs 0

Cyprus Airways warns of potential passenger data breach following phishing attack

PhileNews reports: Cyprus Airways has warned customers of a potential personal data breach following a phishing attack that gave unauthorised access to passenger information. The airline said in an email to customers that an unauthorised external party recently gained access to a passenger file through credential phishing, though there was no breach of the company’s servers or electronic […]