News, Data Breach News
June 16, 2025
1050 views 34 secs 0

Over 170k Records, Including PII Exposed in Real Estate Investment and Management Data Breach

Jeremiah Fowler, discovered and reported to Website Planet about an unencrypted and non-password-protected database that contained 170,360 records with a total size of 116.24GB.  Fowler reports: Fowler reports that although the data appear to belong to Income Property Investments Inc., he could not determine whether they are responsible for the data storage misconfiguration or if a vendor […]

Data Breach News, Cyberattack, News
June 16, 2025
349 views 48 secs 0

Cyberattack on Washington Post Strikes Journalists’ Email Accounts

The Wall Street Journal reports: A cyberattack on the Washington Post compromised email accounts of several journalists and was potentially the work of a foreign government, company officials told some affected staffers in recent days, according to people familiar with the situation. Staffers were told the intrusions compromised journalists’ Microsoft accounts and could have granted the intruder […]

Data Breach News, Malware Ransomware, News, Vulnerabilities
June 15, 2025
380 views 2 secs 0

CISA warns of SimpleHelp ransomware compromises after string of retail attacks

The Record reports: Ransomware gangs have been exploiting a vulnerability in remote device control software SimpleHelp during a recent string of attacks, according to federal cybersecurity officials.  The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that CVE-2024-57727 — a vulnerability affecting SimpleHelp’s widely-used remote access tools — was exploited to “compromise customers of […]

Data Breach News, News
June 12, 2025
1074 views 4 mins 0

Former CIA Analyst Sentenced to Over Three Years in Prison for Unlawfully Transmitting Top Secret National Defense Information

From the U.S. Department of Justice, Office of Public Affairs: A former CIA analyst was sentenced today to 37 months in prison for unlawfully retaining and transmitting Top Secret National Defense Information to people who were not entitled to receive it, information which was publicly posted on social media platforms in October 2024. According to […]

Data Breach News, News
June 12, 2025
978 views 55 secs 0

Whole Foods tells customers of ‘temporary supply challenges’ after cyberattack leaves shelves bare

The New York Post reports: Whole Foods reportedly directed workers to downplay increasingly empty aisles after a cyberattack on its main distributor crippled deliveries and sent ripple effects through the retail food supply chain. The Amazon-owned supermarket chain posted vague notices about “temporary supply challenges” as frustrated customers were greeted with bare shelves at several locations, according […]

Data Breach News, Legal News, News, Vendor News
June 11, 2025
1185 views 28 secs 0

Marriott wins appeal to block class action over data breach

The Daily Record reports an appellate decision that is probably quite a relief to Marriott International: The U.S. Court of Appeals for the 4th Circuit has reversed a lower Maryland court’s recertification of plaintiff classes in a pair of consolidated lawsuits filed against Marriott and an information technology service provider for a 2018 data breach, handing down a major […]

Data Breach News, News
June 10, 2025
1068 views 9 secs 0

Star Health hacker claims sending death threats and bullets to company CEO: ‘next one will go in ur…’

AI- generated image.

The Times of India reports that the hacker responsible for leaking sensitive personal data of 31 million customers of Star Health last year claimed responsibility for sending death threats and bullet cartridges to the company’s chief executive and finance head. The hacker detailed these actions, described as reprisals against Star Health and Allied Insurance Company, […]

Data Breach News, Legal News, News
June 07, 2025
1116 views 38 secs 0

PowerSchool hacker pleads guilty, released on personal recognizance bond

DataBreaches.net reports: He’s just a frail-looking teenager, but he sent threatening emails to get his victims to pay his extortion demands. Today, 19 year-old Assumption College student Matthew Lane waived indictment and pleaded guilty in a Worcester courtroom to hacking an unnamed telecom company and an unnamed edtech vendor, widely known to be PowerSchool. As per the plea […]

Data Breach News, Legal News, News
June 05, 2025
1125 views 15 secs 0

Germany fines Vodafone $51 million for privacy, security breaches

Vodafone GmbH has been hit with a massive fine by the German data protection agency for privacy and data security violations. BleepingComputer reports: The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company’s German subsidiary, €45 million ($51.4 million) for privacy and security violations. “Due to malicious employees in partner agencies who […]

Critical Infrastructure, Data Breach News, News
June 04, 2025
1100 views 17 secs 0

Pro-Ukraine hacker group Black Owl poses ‘major threat’ to Russia – Kaspersky

The Record reports that a hacking group known as BO Team or Black Owl has emerged as a major threat to Russia: A little-known hacking group has emerged as a major threat to Russian state institutions and critical industries, carrying out attacks aimed at causing maximum disruption and extracting financial gain, according to a new […]