Former Conti and Black Basta member now known as “Devman” added to Interpol’s wanted list
Interpol has issued a red notice for Oleg Evgenievich NEFEDOV based on the filing by prosecutors in Frankfurt, Germany: via DataBreaches.net
Canadian Investment Regulatory Organization update regarding unauthorized access to some Canadian investors’ data
CIRO provides an update on the phishing incident previously disclosed in August 2025: The Canadian Investment Regulatory Organization (CIRO) confirms that as a result of a sophisticated phishing attack, first disclosed in August 2025, approximately 750,000 Canadian investors have been impacted. We deeply regret this occurred and apologize for any inconvenience or concern. CIRO is […]
Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners
BleepingComputer reports: Cloud marketplace and distributor Pax8 has confirmed that it mistakenly sent an email to fewer than 40 UK-based partners containing a spreadsheet with internal business information, including MSP customer and Microsoft licensing data. Pax8 is a fast-growing cloud commerce marketplace with more than 1,700 employees, over 47,000 partners worldwide, and operations in 18 countries. […]
Regulator urges Coupang to take down independent data leak probe results from website
Yonhap News reports: Korea’s data protection watchdog on Wednesday urged online retailer Coupang to take down its independent probe results into a massive data leak from its mobile application and website, describing them as unverified information. The Personal Information Protection Commission took issue with the company’s notice that claims a former employee breached the personal […]
Target Employees Verify Authenticity of Leaked Source Code
Filmogaz reports: Recent reports have emerged confirming that leaked source code from Target has been verified as authentic by multiple current and former employees. This discovery highlights serious security concerns regarding internal systems at the retail giant. Leaked Source Code Verification by Target Employees Employees have confirmed the authenticity of the leaked materials, which were […]
Whistleblower drops ‘largest ever’ ICE leak to unmask agents: ‘The last straw’
RawStory reports: A Department of Homeland Security whistleblower has released the identities of about 4,500 ICE and Border Patrol employees Tuesday in what has been called potentially the largest agency data breach for the department. The killing of 37-year-old mother Renee Nicole Good by ICE agent Jonathan Ross last week in Minneapolis has prompted the leak of personnel date […]
Spanish energy giant Endesa discloses data breach affecting customers
BleepingComputer reports: Spanish energy provider Endesa and its Energía XXI operator are notifying customers that hackers accessed the company’s systems and accessed contract-related information, which includes personal details. Endesa is the largest electric utility company in Spain, now owned by Enel Group, that distributes gas and electricity to more than 10 million customers in Spain and Portugal. […]
Fintech firm Betterment confirms data breach after hackers send fake crypto scam notification to users
TechCrunch reports: Automated investment platform Betterment has confirmed that hackers broke into some of its systems last week and accessed the personal information of an undisclosed number of its customers. In an email sent on Monday, which TechCrunch has seen, Betterment said that hackers gained access to some company systems on January 9 by way of a […]
BreachForums Database of 323,986 BreachForums Users Leaked
As seen on HackRead: Resecurity, which shared its research with Hackread.com, found that the leaked file contains information on 323,986 users, including their “metadata extracted from MySQL DB,” which is basically a digital footprint that could help identify the people behind the screens. The database was published on shinyhunte.rs, a site that has previously hosted stolen […]
Meta admits to Instagram password reset mess, denies data leak
The Register reports: Meta has fixed a flaw in its Instagram service that allowed third parties to generate password reset emails, but denied the problem led to theft of users’ personal information. Last Friday, security software vendor Malwarebytes claimed “Cybercriminals stole the sensitive information of 17.5 million Instagram accounts, including usernames, physical addresses, phone numbers, email addresses, […]