Category: Data Breaches
-
The France Travail breach has exposed personal data belonging to at least 340,000 job seekers. This marks the second major cybersecurity incident for the French national employment agency in just over a year. In a notice sent to affected individuals, France Travail explained that attackers likely gained access through a partner portal linked to Kairos,…
-
The Clorox Cognizant lawsuit has revealed shocking new claims about the bleach giant’s 2023 data breach. Clorox is suing IT vendor Cognizant for allegedly handing hackers access to its network—no phishing, no malware, just plain old password giveaways. The attack, carried out by the Scattered Spider ransomware group, caused widespread chaos. According to court documents,…
-
The Mormon university data breach has exposed personal information of over 25,000 students from BYU–Pathway Worldwide (BYU–PW)—an online university supported by the Church of Jesus Christ of Latter-day Saints. According to a filing with the Maine Attorney General’s Office, an unauthorized third party accessed sensitive student records in mid-June. The breach originated from a compromised…
-
The Montana mental health clinic breach has compromised the personal information of nearly 87,000 individuals. Initially believed to be a simple network disruption, the incident has now been confirmed as a full-scale cyberattack on the Western Montana Mental Health Center (WMMHC). Sensitive Data Compromised WMMHC discovered the breach after noticing unusual network activity in September…
-
A Meta AI leak has revealed a serious privacy flaw in Meta’s chatbot system. For a short time, users could view other people’s prompts and AI-generated responses, all because of an insecure backend vulnerability. Meta has since patched the issue. But cybersecurity experts say this flaw serves as a warning to any company offering AI…
-
TikTok privacy violations have landed the company, along with AliExpress and WeChat, in hot water with European regulators. Austrian data rights group noyb has filed formal GDPR complaints against the Chinese tech giants, citing a lack of transparency and blatant disregard for EU data laws. According to noyb, all three platforms failed to provide users…
-
A major Fitify data leak exposed over 373,000 user files—including more than 138,000 sensitive progress photos—due to an unsecured Google cloud storage bucket. The breach raises serious privacy concerns for the popular fitness app’s 25 million users. Unsecured Cloud Bucket Exposes Private Media Discovered by researchers at Cybernews, the breach was caused by a publicly…
-
Belk data breach reports are making waves after the notorious DragonForce ransomware group claimed responsibility for an attack on the US department store chain. The same group recently disrupted UK retail giant Marks & Spencer, causing over $400 million in damages. Now, DragonForce says it has exfiltrated over 156 GB of sensitive data from Belk…
-
Afghan data leak UK fallout continues as the British government relocates nearly 7,000 Afghan nationals to the UK following a major personal data breach by the Ministry of Defence (MoD). These individuals supported British forces in Afghanistan during the 20-year military campaign. In 2022, a defence official mistakenly emailed the confidential information of almost 19,000…
-
Shopify plugin data leak revelations have surfaced after a popular compliance tool exposed sensitive information from hundreds of online storefronts. The culprit? An insecure server used by Consentik—a trusted app designed to help Shopify merchants comply with global privacy laws like GDPR and CCPA. This leak risked store takeovers, data theft, and fraudulent ad activity.…