Category: Data Breaches
-
The massive Salesforce breach campaign started on GitHub shows how attackers exploited repositories to steal OAuth tokens. This supply-chain attack began with unauthorized access to Salesloft’s GitHub and spread into Salesforce environments, exposing sensitive data across hundreds of organizations. How the Breach Unfolded Between March and June 2025, attackers gained access to Salesloft’s GitHub account.…
-
The Anuvu airline data breach has raised alarms across the aviation and maritime industries. Hackers reportedly stole sensitive customer information, including Starlink details and internal system credentials. As a critical provider of in-flight connectivity and entertainment, Anuvu’s exposure poses risks not only to its clients but also to the wider supply chain. What Happened Cybersecurity…
-
The Chess.com data breach alarmed users after attackers exposed sensitive data through a compromised third-party service provider. The incident shows that even the largest platforms face risks when external partners fail. What Happened Chess.com confirmed that the breach did not originate directly from its own systems. Instead, the exposure was traced back to a third-party…
-
Hackers launched a $130 million heist attempt after breaching Sinqia, a Brazilian fintech owned by Evertec. The company processes payments through Pix, Brazil’s real-time payment platform. The attack disrupted operations and triggered emergency defenses. How Hackers Breached the System Attackers gained access using stolen credentials from a third-party IT vendor. Once inside, they infiltrated Sinqia’s…
-
Zscaler Salesloft Breach exposed customer information after attackers compromised the Salesloft Drift integration. Hackers gained access to Zscaler’s Salesforce instance and collected sensitive support case data. How the Breach Happened Attackers targeted Salesloft Drift, an AI-powered chat integration connected to Salesforce. By stealing OAuth tokens, they entered Zscaler’s Salesforce environment and retrieved stored information. The…
-
AT&T data breach claims suggest hackers gained access to the telecom giant’s internal systems, exposing information of up to 24 million users. Attackers say they installed malware that allowed them to steal customer data, intercept messages, and bypass two-factor authentication protections. What Hackers Claim The attackers announced their claims on a cybercrime forum. They alleged…
-
Clinical Diagnostics data breach exposed the personal information of 850,000 patients. Hackers infiltrated a cervical screening program and stole names, birth dates, BSNs, test results, and provider details. The lab confirmed the breach impacted far more people than first reported. Breach Escalates in Scope Initially, the lab revealed data from 485,000 screening participants had leaked.…
-
The TransUnion third-party data breach has exposed the personal details of over 4.4 million customers in the United States. Hackers targeted a vendor system used by the company, not TransUnion’s core infrastructure. How the Breach Happened The incident took place on July 28, 2025, and TransUnion discovered it two days later. Attackers gained unauthorized access…
-
The American doctors data leak has exposed the personal details of nearly half a million U.S. medical professionals. Hackers published the dataset on a dark web forum, revealing sensitive information that puts doctors, nurses, and other healthcare staff at risk of fraud and targeted cyberattacks. The breach highlights the growing vulnerability of the healthcare sector…
-
The Tea app breach has left thousands of users vulnerable after sensitive data was leaked online. Billed as a women-only safe space for dating advice, the app failed to protect its community. In late July 2025, hackers exposed around 72,000 images, including government IDs and selfies, along with more than 1 million private messages. The…