Security News

TalkTalk investigates breach after data for sale on hacking forum
2025-01-25 21:23

UK telecommunications company TalkTalk is investigating a third-party supplier data breach after a threat actor began selling alleged customer data on a hacking forum. [...]

PayPal to pay $2 million settlement over 2022 data breach
2025-01-25 15:15

New York State has announced a $2,000,000 settlement with PayPal over charges it failed to comply with the state's cybersecurity regulations, leading to a 2022 data breach. [...]

CISA: Hackers still exploiting older Ivanti bugs to breach networks
2025-01-23 16:51

CISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws patched since September to breach vulnerable networks. [...]

HPE investigates breach as hacker claims to steal source code
2025-01-20 19:06

Hewlett Packard Enterprise (HPE) is investigating claims of a new breach after a threat actor said they stole documents from the company's developer environments. [...]

Otelier data breach exposes info, hotel reservations of millions
2025-01-17 20:17

Hotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests' personal information and reservations for well-known...

Wolf Haldenstein law firm says 3.5 million impacted by data breach
2025-01-16 16:26

Wolf Haldenstein Adler Freeman & Herz LLP ("Wolf Haldenstein") reports it has suffered a data breach that exposed the personal information of nearly 3.5 million individuals to hackers. [...]

UK domain registry Nominet confirms breach via Ivanti zero-day
2025-01-13 16:50

Nominet, the official .UK domain registry and one of the largest country code registries, has confirmed that its network was breached two weeks ago using an Ivanti VPN zero-day vulnerability. [...]

EU law enforcement training agency data breach: Data of 97,000 individuals compromised
2025-01-13 14:22

Personal data of nearly 100,000 individuals that have participated in trainings organized by CEPOL, the European Union (EU) Agency for Law Enforcement Training, has potentially been compromised...

Telefónica confirms internal ticketing system breach after data leak
2025-01-10 19:15

Spanish telecommunications company Telefónica confirms its internal ticketing system was breached after stolen data was leaked on a hacking forum. [...]

STIIIZY data breach exposes cannabis buyers’ IDs and purchases
2025-01-10 15:19

Popular cannabis brand STIIIZY disclosed a data breach this week after hackers breached its point-of-sale (POS) vendor to steal customer information, including government IDs and purchase...