British Airways, Boots, BBC payroll data stolen in MOVEit supply-chain attack Microsoft blames Russian Clop ransomware crew for theft of staff info Cyber-crime05 Jun 2023 | 23
Toyota admits to yet another cloud leak infosec in brief Also, hackers publish RaidForum user data, Google's $180k Chrome bug bounty, and this week's vulnerabilities Security05 Jun 2023 | 6
Ministry of Justice rapped by ICO for old fashioned data leak Forget AWS buckets, bags of medical and personal info on inmates and their guards left in 'unsecured' area of prison Offbeat25 May 2023 | 2
Apria Healthcare says potentially 2M people caught up in IT security breach Took two years to tell us 'small number of emails' accessed Cyber-crime23 May 2023 | 5
Dish confirms 300,000 people's data was exposed in February's attack But don't worry – we know it was deleted. Hmm. How would you know that? Cyber-crime23 May 2023 | 4
More UK councils caught by Capita's open AWS bucket blunder As for March megabreach? M&S and Guinness maker Diageo warn pension members about data risks Cyber-crime22 May 2023 | 35
Six million patients' data feared stolen from PharMerica Cue the inevitable class action lawsuit Cyber-crime18 May 2023 | 5
US Dept of Transport security breach exposes info on a quarter-million people Not the first time Uncle Sam has had the wheels come off its IT systems Security16 May 2023 | 4
Capita looking at a bill of £20M over breach clean-up costs Analyst says expense 'no small drop in ocean' but reputational damage could be 'far greater' Cyber-crime10 May 2023 | 9
Japan's ubiquitous convenience stores now serving up privacy breaches Fujitsu in the frame for foul up with government document dispersal app Security10 May 2023 | 10
Western Digital: Customer info stolen in that IT attack Hard times for buyers of these hard drives Cyber-crime08 May 2023 | 8
T-Mobile US suffers second data theft within months in brief Also, Capita's buckets are leaking, ransomware attackers deliver demands via emergency alert, and this week's critical vulns Security08 May 2023 | 6
Data loss costs are going up – and not just for those who choose to pay thieves Ransoms, investigations, and breach-related lawsuits are hitting companies in the wallet, law firm says Cyber-crime02 May 2023 | 6
IT giant Bitmarck shuts down customer, internal systems after cyberattack Patient data 'was and is never endangered', says medical tech slinger Cyber-crime01 May 2023 | 6
That 3CX supply chain attack keeps getting worse: Other vendors hit In Brief Also, Finland sentences CEO of breach company to prison (kind of), and this week's laundry list of critical vulns CSO24 Apr 2023 | 9
Chinese scientists calculate the Milky Way's mass as 805 billion times that of our Sun Asia In Brief ALSO: Australia says offensive hacking is working; DJI hit with $279m patent suit; Philippines Police leak data; and more Security24 Apr 2023 | 12
Capita has 'evidence' customer data was stolen in digital burglary Admits criminals accessed 4% of servers from March 22 until it spotted them at month-end Cyber-crime20 Apr 2023 | 14
Capita IT breach gets worse as Black Basta claims it's now selling off stolen data No worries, outsourcer only handles government tech contracts worth billions Cyber-crime18 Apr 2023 | 39
Pentagon super-leak suspect cuffed: 21-year-old Air National Guardsman When bragging about your job on Discord gets just a little out of hand? Cyber-crime13 Apr 2023 | 96
Criminal records office yanks web portal offline amid 'cyber security incident' ACRO says payment data safe, other info may have been snaffled Cyber-crime06 Apr 2023 | 20
Uber driver info stolen yet again: This time from law firm Never mind software supply chain attacks, lawyers are the new soft target? Cyber-crime03 Apr 2023 | 14
Western Digital confirms digital burglary, calls the cops Thinks info from internal systems 'obtained' by miscreant, unsure of nature or scope data Cyber-crime03 Apr 2023 | 10
Lawyers cough up $200k after health data stolen in Microsoft Exchange pillaging In addition to $100k given to LockBit Security27 Mar 2023 | 8
Australian FinTech takes itself offline to deal with cyber incident that caused data leak Latitude blames a 'major vendor' for its woes. Is that a vendor? A cloud? Whoever they are, they're in trouble Cyber-crime21 Mar 2023 | 4
Ferrari in a spin as crims steal a car-load of customer data Speeds away from the very suggestion it would ever pay a ransom Cyber-crime21 Mar 2023 | 8
You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k? At the very least, with other costs on top Cyber-crime18 Mar 2023 | 16
T-Mobile US buys Ryan Reynolds-backed Mint Mobile for $1.35B Video However, those Ryan Reynolds commercials aren't going anywhere Personal Tech15 Mar 2023 | 9
Zoll Medical says intruders had 1M+ patient, staff records at their fingertips Names, addresses, SSNs all up for grabs Security13 Mar 2023 | 3
What happens if you 'cover up' a ransomware infection? For Blackbaud, a $3m charge File under cost of doing business CSO10 Mar 2023 | 9
US House reps, staff health data swiped in cyber-heist Data for sale via dark web, Senate in line of fire, too Cyber-crime09 Mar 2023 | 8
Acer confirms server intrusion after miscreant offers 160GB cache of stolen files Customer info safe, or so we're told Cyber-crime08 Mar 2023 | 4
Dish: Someone snatched our data, if you're wondering why our IT systems went down Outage-hit telco still won't confirm ransomware infection, or if it's paying up Cyber-crime28 Feb 2023 | 4
Telus source code, staff info for sale on dark web forum $50k buys you '1,000 unique repositories' that may or may not be legit Security25 Feb 2023 | 8
Sensitive DoD emails exposed by unsecured Azure server AWS, Google and Oracle may benefit as Microsoft blames the Pentagon and the Pentagon blames Microsoft Security23 Feb 2023 | 19
Lawyers join forces to fight common enemy: The SEC and its probes into cyber-victims Did the financial watchdog just do the impossible and herd cats? Cyber-crime23 Feb 2023 | 10
LockBit's Royal Mail ransom deadline flies by. No data released in brief Also: Russian wiper malware authors turn to data theft, plus this week's critical vulns Cyber-crime13 Feb 2023 | 9
Suspect in Finnish psychotherapy center blackmail hack arrested Suomi sentence expected for shrink records theft Security08 Feb 2023 | 14
Former Ubiquiti dev pleads guilty in data theft and extortion case Nickolas Sharp now faces up to 35 years in prison Cyber-crime03 Feb 2023 | 5
FTC prescribes GoodRx a $1.5m pill after 'sharing health info' with web giants Facebook, Google, Twilio had a look-see of that data, we're told Personal Tech02 Feb 2023 | 8
JD Sports admits intruder accessed 10 million customers' data No payment details exposed in breach, says retailer, but shoppers told to be 'vigilant about potential scams' Cyber-crime30 Jan 2023 | 25
Gee, tanks: Russian hackers DDoS Germany for aiding Ukraine in brief Also: a week of leaks; Riot Games says 'LoL' to source code ransom demands; and Yandex source also appears online Security30 Jan 2023 | 12
US authorities release asylum seekers after leaking their data online In brief Also: US terrorist no-fly list found left on unsecured server, Russian dark web drug markets go to war Security23 Jan 2023 | 4
Crims steal data on 40 million T-Mobile US customers Sixth snafu in five years? Crooks have this useless carrier on speed dial Cyber-crime20 Jan 2023 | 12
PayPal says crooks poked around 35,000 accounts in credential stuffing attack That passwordless option is looking really good right about now Security19 Jan 2023 | 14
Mailchimp 'fesses up to second digital burglary in five months Social engineering helped intruders break into customers' inboxes again Cyber-crime19 Jan 2023 | 11
As if Elon didn't have enough problems – Twitter sued over leaky servers Damages and security improvements? Or maybe settle for a neon bird light Personal Tech19 Jan 2023 | 5
No more holidays for US telcos, FCC is cracking down In Brief Also, LastPass faces class action, and Louisiana says that, while the internet may be for porn, ID is still required Security08 Jan 2023 | 41
Twitter data dump: 200m+ account database now free to download Updated No passwords, but plenty of stuff for social engineering and doxxing Security05 Jan 2023 | 48
'Multiple security breaches' shut down trucker protest 10-7, there buddy, sorry Security03 Jan 2023 | 94
Crooks copy source code from Okta’s GitHub repository The hack wraps up a year of bad security incidents for identity Security23 Dec 2022 | 13
On the 12th day of the Rackspace email disaster, it did not give to me … Updated … a working Exchange inbox tree CSO14 Dec 2022 | 66
Uber staff info leaks after supplier Teqtivity gets pwned Thankfully no customer info – but the spotlight is back on third-party attacks Security13 Dec 2022 | 3
ICE data dump reveals names, locations of 6,000+ asylum seekers Your tax dollars at work Personal Tech01 Dec 2022 | 9
Meta fined $275m after data-scraping fiasco leaked 533m Facebook users' profiles Irish eyes aren't smiling Personal Tech28 Nov 2022 | 27
Serendipitous discovery nets security researcher $70k bounty In brief Also, a phishing gang goes Royal, while another employee at Snowden's old haunt gets caught nabbing data Security20 Nov 2022 | 10
Australia blames Russia for harboring health insurance hackers Crims accessed 10 million customer records and are releasing intimate medical details Cyber-crime11 Nov 2022 | 21
Husband and wife nuclear warship 'spy' team get 20 years each The Toebbes tried selling US Navy secrets, but handed them right to the FBI Cyber-crime10 Nov 2022 | 27
Experian, T-Mobile US settle data spills for mere $16m Two breaches: one in 2012, another in 2015 – saw 18m folks' records stolen Cyber-crime08 Nov 2022 | 4
Breached health insurer won't pay ransom to protect customers, warns of more attacks Australia's Medibank uses a government-approved Band-Aid to cover a gaping 10-milion-record wound Cyber-crime07 Nov 2022 | 14
Royal Mail customer data leak shutters online Click and Drop Customers complain of exposed order info, multiple charges — but still no postage Security03 Nov 2022 | 25
Education tech giant gets an F for security after sensitive info on 40 million users stolen Chegg it out: Four blunders in four years CSO31 Oct 2022 | 6
Health insurer Medibank's data breach diagnosis keeps getting worse All four million customers at risk of having records of medical treatments exposed Cyber-crime26 Oct 2022 | 11