Data Breach News, News
January 30, 2026
342 views 26 secs 0

A Grok AI Toy Breach Exposed 50,000 Private Chats

WebProNews reports: An AI toy called Grok exposed 50,000 conversation logs between children and the device to anyone with a Gmail account due to a cloud storage misconfiguration, raising serious questions about data security, regulatory compliance, and the protection of children’s privacy in AI-enabled products. … According to Wired, the breach originated from a fundamental misconfiguration […]

Data Breach News, News
January 30, 2026
347 views 13 secs 0

Infamous RAMP cybercrime forum seized by FBI

The Record reports: Websites for the RAMP cybercrime forum, a notorious Russian marketplace widely used by ransomware groups and initial access brokers, have been replaced with a splash page declaring they have been seized by the FBI. Domain name server (DNS) records reportedly initially showed RAMP’s clearnet site redirecting to an FBI domain regularly used […]

Data Breach News, Commentaries and Analyses, News
January 27, 2026
439 views 44 secs 0

SLSH Malicious “Supergroup” Targeting 100+ Organizations via Live Phishing Panels

Silent Push reports: A massive identity-theft campaign is currently active, targeting Okta Single Sign-On (SSO) and other SSO platform accounts across 100+ high-value enterprises. Silent Push has identified a surge in infrastructure deployment that mirrors the TTPs (Tactics, Techniques, and Procedures) of SLSH—a predatory alliance between Scattered Spider, LAPSUS$, and ShinyHunters. This isn’t a standard automated spray-and-pray attack; it is a […]

Data Breach News, News
January 26, 2026
478 views 4 mins 0

Double Trouble: Two Gangs Both Attack and Encrypt the Same Revenue Cycle Management Firm

SuspectFile reports that two well-known ransomware gangs independently attacked and encrypted files from Resource Corporation of America (RCA), a revenue cycle management business associate headquartered in Texas. What happened next is not totally clear because neither the Qilin gang nor the victim provided any details, but SuspectFile reports that the Medusa gang provided some information […]

News, Data Breach News, Vendor News
January 23, 2026
328 views 6 secs 0

ShinyHunters claim to be behind SSO-account data theft attacks

BleepingComputer reports: The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion. In these attacks, threat actors impersonate IT support and call employees, tricking them into […]

Data Breach News, Legal News, News
January 21, 2026
340 views 31 secs 0

DOGE improperly shared Social Security data: Filing

The Hill reports: Members of Elon Musk’s Department of Government Efficiency (DOGE) improperly shared Social Security data through a third-party server, according to a recent court filing from the Justice Department. The DOGE team embedded at the Social Security Administration (SSA) used Cloudflare, which was not approved for storing agency data, to share data during a 10-day period in March, the […]

Data Breach News, Education Sector, News
January 20, 2026
353 views 2 mins 0

Monroe University data breach affected 321,000

The Minnesota Department of Human Services’ vendor breach was not the only recent breach disclosed that affected more than 300,000 people. Monroe University in New York also disclosed a breach involving a lot of sensitive information. From their January 13 notification letter: We are posting this notice to inform our community of a data security […]

News
January 15, 2026
312 views 16 secs 0

Verizon says major service outage is resolved, affected customers will be compensated

What caused a massive Verizon outage yesterday? The firm still hasn’t said. The Gothamist reports: Verizon service is back for affected customers in the New York area after a widespread outage disrupted cellphones across the country for much of Wednesday, the company said. Affected customers will receive account credits, according to Verizon, which said details […]

Data Breach News, News
January 13, 2026
369 views 48 secs 0

Whistleblower drops ‘largest ever’ ICE leak to unmask agents: ‘The last straw’

RawStory reports: A Department of Homeland Security whistleblower has released the identities of about 4,500 ICE and Border Patrol employees Tuesday in what has been called potentially the largest agency data breach for the department. The killing of 37-year-old mother Renee Nicole Good by ICE agent Jonathan Ross last week in Minneapolis has prompted the leak of personnel date […]