Data Breach

Security

Red Cross forced to shutter family reunion service following cyberattack and data leak

Director-general pleads with cyber-scum: leave this data alone, because the people involved have suffered enough

20 Jan 2022 07:58 | 18

Security

Federal Communications Commission proposed stricter rules on how telco carriers should report data breaches

Customers shouldn't need to wait seven days before being told

13 Jan 2022 22:42 | 5

Updated

SlimPay fined €180k after 12 million customers' bank data publicly accessible for 5 years

French regulator's investigation finds multiple breaches of GDPR

04 Jan 2022 17:33 | 13

Security

Facebook expands bug bounty program to include scraping attacks, two years after it was scraped – hard

But still allows limited harvesting

16 Dec 2021 01:33 | 6

Security

Ransomwared payroll provider leaks data on 38,000 Australian government workers

Frontier Software admitted attack three weeks ago, said data was safe … now it's on the dark web

10 Dec 2021 05:58 | 9

Security

Spar shops across northern England shut after cyber attack hits payment processing abilities

Franchisees' closures also affect petrol stations

06 Dec 2021 18:41 | 27

Security

Panasonic admits intruders were inside its servers for months

Spotted the crack after it ended – still not sure what was lost

30 Nov 2021 04:27 | 10

Security

Labour Party supplier ransomware attack: Who holds ex-members' data and on what legal basis?

'Anon firm lost your data, don't worry' just makes people more fearful

05 Nov 2021 13:00 | 47

Security

Data-breached Guntrader website calls in liquidators, is reborn as Guntrader 2 Ltd

Viscount still helms new firm – while since-deleted posts on firm's Facebook page enrage users

29 Oct 2021 15:27 | 56

Updated

Centre for Computing History apologises to customers for 'embarrassing' breach

Website patched following phishing scam, no financial data exposed

20 Oct 2021 09:15 | 12

Updated

3D printing site Thingiverse suffers breach of 228,000 email addresses amid sluggish disclosure

So says Have I Been Pwned's maintainer - but site claims breach only impacted 'handful of users'

14 Oct 2021 16:03 | 8

Security

Schools email marketing company told us to go away when we told them of exposed database creds, say infoseccers

Usernames and passwords could be read (and abused) by anyone in since fixed flaw

12 Oct 2021 09:15 | 64

Updated

Telegraph newspaper bares 10TB of subscriber data and server logs to world+dog

Poor securing of Elasticsearch cluster strikes again

05 Oct 2021 13:37 | 51

Security

Database containing personal info on 106m people who traveled to Thailand found open to the internet – report

Misconfigured Elasticsearch server blamed

21 Sep 2021 23:36 | 5

Security

Guntrader breach perp: I don't think it's a crime to dump 111k people's details online in Google Earth format

Plus: Police aren't treating breaches as terror offence

07 Sep 2021 10:01 | 141

Security

Indonesian authorities probe million-record leak from national COVID app

Someone didn't secure an Elasticsearch database, researchers allege

01 Sep 2021 05:16 | 2

Updated

Leaked Guntrader firearms data file shared. Worst case scenario? Criminals plot UK gun owners' home addresses in Google Earth

Bang out of order

31 Aug 2021 14:19 | 168

Security

Un-carrier? Definitely Unsecure: T-Mobile US admits 48m customers' details stolen after downplaying reports

Affected users to get free McAfee ID protection, so that's OK then

18 Aug 2021 12:37 | 30

Security

Singaporean telco leaked personal data of over 57,000 customers

StarHub's breach announcement came a month after discovery of customer file on dump site

12 Aug 2021 04:28 | 1

Security

Over 100 Taiwanese political figures' messages leaked outta LINE app

Attack turned off encryption function, which made snooping rather easier

29 Jul 2021 04:34 | 6

Security

Security breaches where working from home is involved are costlier, claims IBM report

Great, it's not like employers need more reasons to haul you back to the office

28 Jul 2021 19:47 | 6

Security

Misconfigured Azure Blob at Raven Hengelsport exposed records of 246,000 anglers – and took months to tackle, claim infosec researchers

18GB of Dutch fishing supplier's data left in unsecured server

27 Jul 2021 20:49 | 8

Security

SSD belonging to Euro-cloud Scaleway was stolen from back of a truck, then turned up on YouTube

Has since been recovered, and Scaleway now ships disks with GPS trackers

27 Jul 2021 03:58 | 35

Security

Hole blasted in Guntrader: UK firearms sales website's CRM database breached, 111,000 users' info spilled online

One of the worst things that could happen to privacy-focused community

23 Jul 2021 11:29 | 97

Updated

You'll never Guess whose data has been nicked as US fashion firm confirms systems breach

Not the only one either; Spread Group admits to even worse pwnage

13 Jul 2021 14:45 | 16

Security

Oi! Our British Airways data breach compo sueball is still going, shouts rival law firm

Yesterday's settlement was just one of the bigger firms

07 Jul 2021 17:10 | 2

Security

British Airways data breach lawsuit settled: Airline coughs up potentially millions to make sueball bounce away

And a third of that's going into the lawyers' pockets

06 Jul 2021 12:58 | 16

Security

Fashion titan French Connection says 'FCUK' as REvil-linked ransomware makes off with data

Attack on an internal system shouldn't put customers at risk, biz claims

24 Jun 2021 08:30 | 6

Security

Alibaba suffers billion-item data leak of usernames and mobile numbers

Shopping service Taobao scraped by affiliate marketer; developer and boss jailed

16 Jun 2021 03:14 | 1

Exclusive

Mensa data spillage was due to 'unauthorised internal download'

Book smarts vs street smarts face-off might have been an inside job, claims egghead chief

15 Jun 2021 09:15 | 114

Security

Air India admits to data breach impacting 4.5m customers, sat on the news for five weeks

While my SITA gently leaks, customers were unaware their credit card numbers had flown away

24 May 2021 05:58 | 5

Security

Indonesia’s national health insurance scheme leaks at least a million citizens' records

Tech Ministry trying to figure out just how much personal info has made it onto notorious RaidForums data-mart

24 May 2021 02:28 | 12

Applications

NHS Digital booking website had unexpected side effect: It leaked people's jab status

Wanna find out if your employee has had a shot? Just lob her postcode and DoB into this website

06 May 2021 18:37 | 41

Security

Volunteer-run pirate Manga website attacked, loses hashed passwords, has ‘nobody’ to fix the mess

Dot-org has been offline for a month, says ‘people who have ill intentions’ behind crack

26 Apr 2021 02:28 | 17

Security

Atheists appeal to higher power for intercession over alleged sins against privacy

Membership data row ascends to desk of California attorney-general

07 Apr 2021 06:58 | 42

Updated

NurseryCam hacked, company shuts down IoT camera service

Real names, usernames, and what appeared to be SHA-1 hashed passwords* exposed

22 Feb 2021 17:30 | 28

Security

Atheists warn followers of unholy data leak, hint dark deeds may have tried to make it go away

Rival atheists accused of not believing in privacy law

19 Feb 2021 06:04 | 108

Updated

UK firm NOW: Pensions tells some customers a 'service partner' leaked their data all over 'public software forum'

Compromised info include names, email addresses, DoBs, and National Insurance numbers

22 Dec 2020 13:33 | 37

Security

45 million medical scans from hospitals all over the world left exposed online for anyone to view – some servers were laced with malware

23,000 Britons' data was among unsecured info, finds research

15 Dec 2020 11:40 | 43

Exclusive

Cayman Islands investment fund left entire filestore viewable by world+dog in unsecured Azure blob

Blank share certificates, passport scans, you name it

01 Dec 2020 11:30 | 43

Security

Micropayments company Coil distributes new privacy policy with email that puts users' addresses in the ‘To:’ field

Hundreds of email addresses exposed, customers predictably less-than-thrilled

17 Nov 2020 04:58 | 16

Updated

Kids' gaming website Animal Jam breached after miscreants spot private AWS key on pwned Slack channel

Tens of millions of usernames and passwords go walkies amid claims of decryption

12 Nov 2020 17:28 | 4

Security

Hackers rummaged about in Finnish psychotherapy clinic – now patients extorted with public data dump threats

Details on 300 reportedly already published to Tor website

26 Oct 2020 16:50 | 33

Security

Diplomats are supposed to be subtle and clever. Australia’s just leaked 1,000 citizens’ email addresses

And not just any citizens, but folks stranded overseas and in dire need of assistance

01 Oct 2020 04:23 | 11

Security

Error-bnb: Techies scramble to fix Airbnb website bug that let strangers read each others' account messages

One thing to let people rent your home, quite another to let them access your private comms

26 Sep 2020 00:06 | 9

Security

Big US election coming up, security is vital and, oh look... a federal agency just got completely pwned for real

Hacker had set up shop on network using stolen Office 365 accounts

25 Sep 2020 12:15 | 30

Security

Wondering how to tell the world you've been hacked? Here's a handy guide from infosec academics

Pair of England's unis figure out better way of admitting terrible thing

24 Sep 2020 16:46 | 12

Security

Chinese database details 2.4 million influential people, their kids, addresses, and how to press their buttons

Compiled using mostly open-source intel, shines a light on extent of China’s surveillance activities

15 Sep 2020 06:27 | 79

Security

Ex-Uber chief security officer charged, accused of covering up theft of personal info from databases by hackers

Say it ain't Joe?

20 Aug 2020 23:27 | 10

Security

You weren't hacked because you lacked space-age network defenses. Nor because cyber-gurus picked on you. It's far simpler than that

Three little words: Patches, passwords, policies

13 Aug 2020 07:06 | 36

Security

Leaky AWS S3 buckets are so common, they're being found by the thousands now – with lots of buried secrets

When will this madness end?

03 Aug 2020 23:47 | 47

Security

No wonder Brit universities report hacks so often: Half of staff have had zero infosec training, apparently

Plus: Don't worry, students. The attackers told us they destroyed your data

29 Jul 2020 08:01 | 32

Security

UKIP blackmail, data breach sueball allegations were groundless, rules High Court

Tawdry political scuffle over database access binned for lack of evidence

27 Jul 2020 08:07 | 20

Security

Congrats, First American Title Insurance, you've made technology history. For all the wrong reasons

Insurer is first biz to be charged in New York for data security negligence after exposing millions of records to the web

23 Jul 2020 22:55 | 20

Exclusive

Twilio: Someone waltzed into our unsecured AWS S3 silo, added dodgy code to our JavaScript SDK for customers

API dev kit remained modified for hours, says source

21 Jul 2020 23:10 | 22

Security

Twitter hackers busted 2FA to access accounts and then reset user passwords

Perps tried to sell high-profile usernames after possibly perusing private data

20 Jul 2020 06:25 | 71

Databases

Seven 'no log' VPN providers accused of leaking – yup, you guessed it – 1.2TB of user logs onto the internet

Maybe it was the old Lionel Hutz play: 'No-logging VPN? I meant, No! Logging VPN!'

17 Jul 2020 21:51 | 73

Security

Step on it, I've got the police on my hack: Anon swipes, leaks online 269GB of crime intel docs from cops, Feds

'BlueLeaks' data lifted after web host biz pwned, we're told

22 Jun 2020 22:52 | 18

Security

Airline-chasing lawyers leap on Easyjet for £18bn after 9m folks' data, itineraries nicked

No win, no fee. But if they win it's an up to £5.4bn fee

26 May 2020 16:22 | 17

Security

Insider threat? Pffft. Hackers on the outside are the ones mostly making off with your private biz data, says Verizon

Malware-led intrusions falling out of fashion, too

19 May 2020 04:01 | 11

Topics

Resources

Situation Publishing

Get our Weekly newsletter

Explore broader topics

Articles tagged with Data Breach

Red Cross forced to shutter family reunion service following cyberattack and data leak

Federal Communications Commission proposed stricter rules on how telco carriers should report data breaches

SlimPay fined €180k after 12 million customers' bank data publicly accessible for 5 years

Facebook expands bug bounty program to include scraping attacks, two years after it was scraped – hard

Ransomwared payroll provider leaks data on 38,000 Australian government workers

Spar shops across northern England shut after cyber attack hits payment processing abilities

Panasonic admits intruders were inside its servers for months

Labour Party supplier ransomware attack: Who holds ex-members' data and on what legal basis?

Data-breached Guntrader website calls in liquidators, is reborn as Guntrader 2 Ltd

Centre for Computing History apologises to customers for 'embarrassing' breach

3D printing site Thingiverse suffers breach of 228,000 email addresses amid sluggish disclosure

Schools email marketing company told us to go away when we told them of exposed database creds, say infoseccers

Telegraph newspaper bares 10TB of subscriber data and server logs to world+dog

Database containing personal info on 106m people who traveled to Thailand found open to the internet – report

Guntrader breach perp: I don't think it's a crime to dump 111k people's details online in Google Earth format

Indonesian authorities probe million-record leak from national COVID app

Leaked Guntrader firearms data file shared. Worst case scenario? Criminals plot UK gun owners' home addresses in Google Earth

Un-carrier? Definitely Unsecure: T-Mobile US admits 48m customers' details stolen after downplaying reports

Singaporean telco leaked personal data of over 57,000 customers

Over 100 Taiwanese political figures' messages leaked outta LINE app

Security breaches where working from home is involved are costlier, claims IBM report

Misconfigured Azure Blob at Raven Hengelsport exposed records of 246,000 anglers – and took months to tackle, claim infosec researchers

SSD belonging to Euro-cloud Scaleway was stolen from back of a truck, then turned up on YouTube

Hole blasted in Guntrader: UK firearms sales website's CRM database breached, 111,000 users' info spilled online

You'll never Guess whose data has been nicked as US fashion firm confirms systems breach

Oi! Our British Airways data breach compo sueball is still going, shouts rival law firm

British Airways data breach lawsuit settled: Airline coughs up potentially millions to make sueball bounce away

Fashion titan French Connection says 'FCUK' as REvil-linked ransomware makes off with data

Alibaba suffers billion-item data leak of usernames and mobile numbers

Mensa data spillage was due to 'unauthorised internal download'

Air India admits to data breach impacting 4.5m customers, sat on the news for five weeks

Indonesia’s national health insurance scheme leaks at least a million citizens' records

NHS Digital booking website had unexpected side effect: It leaked people's jab status

Volunteer-run pirate Manga website attacked, loses hashed passwords, has ‘nobody’ to fix the mess

Atheists appeal to higher power for intercession over alleged sins against privacy

NurseryCam hacked, company shuts down IoT camera service

Atheists warn followers of unholy data leak, hint dark deeds may have tried to make it go away

UK firm NOW: Pensions tells some customers a 'service partner' leaked their data all over 'public software forum'

45 million medical scans from hospitals all over the world left exposed online for anyone to view – some servers were laced with malware

Cayman Islands investment fund left entire filestore viewable by world+dog in unsecured Azure blob

Micropayments company Coil distributes new privacy policy with email that puts users' addresses in the ‘To:’ field

Kids' gaming website Animal Jam breached after miscreants spot private AWS key on pwned Slack channel

Hackers rummaged about in Finnish psychotherapy clinic – now patients extorted with public data dump threats

Diplomats are supposed to be subtle and clever. Australia’s just leaked 1,000 citizens’ email addresses

Error-bnb: Techies scramble to fix Airbnb website bug that let strangers read each others' account messages

Big US election coming up, security is vital and, oh look... a federal agency just got completely pwned for real

Wondering how to tell the world you've been hacked? Here's a handy guide from infosec academics

Chinese database details 2.4 million influential people, their kids, addresses, and how to press their buttons

Ex-Uber chief security officer charged, accused of covering up theft of personal info from databases by hackers

You weren't hacked because you lacked space-age network defenses. Nor because cyber-gurus picked on you. It's far simpler than that

Leaky AWS S3 buckets are so common, they're being found by the thousands now – with lots of buried secrets

No wonder Brit universities report hacks so often: Half of staff have had zero infosec training, apparently

UKIP blackmail, data breach sueball allegations were groundless, rules High Court

Congrats, First American Title Insurance, you've made technology history. For all the wrong reasons

Twilio: Someone waltzed into our unsecured AWS S3 silo, added dodgy code to our JavaScript SDK for customers

Twitter hackers busted 2FA to access accounts and then reset user passwords

Seven 'no log' VPN providers accused of leaking – yup, you guessed it – 1.2TB of user logs onto the internet

Step on it, I've got the police on my hack: Anon swipes, leaks online 269GB of crime intel docs from cops, Feds

Airline-chasing lawyers leap on Easyjet for £18bn after 9m folks' data, itineraries nicked

Insider threat? Pffft. Hackers on the outside are the ones mostly making off with your private biz data, says Verizon

ABOUT US

MORE CONTENT

SITUATION PUBLISHING

SIGN UP TO OUR DAILY NEWSLETTER