HackRead reports: Barts Health NHS Trust has confirmed that the Russian-speaking Cl0p ransomware group stole files from one of its invoice databases after exploiting a vulnerability in Oracle E-Business Suite. The breach exposed data linked to payments for treatment and services, with some records going back several years. Hackread.com first reported on the Cl0p activity in November twenty twenty […]
Gesa Credit Union was one of Marquis Software Solutions’s clients affected by a breach at Marquis, but there were many others. Bleeping Computer reports: Financial software provider Marquis Software Solutions is warning that it suffered a data breach that impacted dozens of banks and credit unions across the US. Marquis Software Solutions provides data analytics, […]
Gesa Credit Union has posted a notice on its website: Gesa Credit Union (“Gesa”) is providing notification of a recent data security incident that occurred at Marquis Software Solutions (“Marquis”), a former digital and physical marketing and communications vendor for Gesa. This incident involved information related to some Gesa members. However, this incident did not impact […]
Paubox reports on the recent Mixpanel incident and why it matters: OpenAI experienced a third-party data breach on November 9, 2025, when its vendor, Mixpanel, reported unauthorized access within its own systems. What happened According to OpenAI’s own disclosure of the incident on November 28, 2025, the attacker exported a dataset containing limited customer identifiable analytics tied […]
If you have ever car-shopped online or looked for information on the prices or value of a car, you’ve probably checked out Edmunds.com. Edmunds, headquartered in Santa Monica, California, was acquired by CarMax in 2021. On or about August 19, 2025, Edmunds learned that a vendor they use for proprietary messaging was the victim of […]
The Record reports: A lack of liability for software vendors is among the most pressing issues putting Britain’s economic and national security at risk, an influential committee of lawmakers warned on Monday. The report by the Business and Trade Committee says economic threats facing the United Kingdom are “multiplying — and, in the years ahead, will grow […]
Reuters reports: Comcast will pay a $1.5 million fine after a vendor breach exposed personal data from 237,000 current and former customers, the Federal Communications Commission said on Monday. The FCC said a debt collector used by Comcast until 2022, Financial Business and Consumer Solutions, suffered a 2024 data breach that exposed personal information of Comcast […]
The New York Times reports: Some of the nation’s biggest banks were scrambling on Saturday night to assess the fallout from a large-scale hack of a vendor whose compromise could expose sensitive customer data. The vendor, SitusAMC, has been deployed by hundreds of banks and other lenders to help originate and collect money from real […]
Bleeping Computer reports: American cybersecurity firm CrowdStrike has confirmed that an insider shared screenshots taken on internal systems with hackers after they were leaked on Telegram by the Scattered Lapsus$ Hunters threat actors. However, the company noted that its systems were not breached as a result of this incident and that customers’ data was not […]
The Record reports: Cloud giant Salesforce warned customers of a potential data breach on Wednesday evening after discovering “unusual activity” related to a third-party application called Gainsight. Salesforce posted a message on its website saying an investigation revealed that the activity “may have enabled unauthorized access to certain customers’ Salesforce data through the app’s connection.” Gainsight is […]
