Articles tagged "Data Breach"

Found 545 articles

Actively Exploited

Kraken, a major cryptocurrency exchange, is facing extortion threats from a cybercrime group that claims to have gained access to sensitive internal systems. The attackers are demanding ransom, threatening to release videos that allegedly demonstrate how they accessed client data. This incident raises serious concerns about the security of client information and the overall integrity of the exchange. Kraken has not disclosed the extent of the breach or how the hackers gained access, but the situation puts pressure on the company to bolster its security measures and protect its users. The threat of exposing internal operations is particularly alarming for any organization, especially in the cryptocurrency sector where trust is paramount.

Read Original
Booking.com Confirms Data Breach as Hackers Access Customer Details

Hackread – Cybersecurity News, Data Breaches, AI and More

Booking.com has confirmed that a data breach has occurred, compromising customer details. Although no payment information was accessed, the breach raises concerns about potential phishing scams targeting affected users. This incident puts customers at risk of receiving fraudulent communications that could lead to further data theft or financial loss. Booking.com has not specified how many users are impacted or the exact nature of the compromised data. Customers should remain vigilant and be cautious with any unsolicited emails or messages they receive following this breach.

Read Original

A significant data breach involving Rockstar Games has been reported, with a leak of 8.1GB of sensitive data attributed to the hacking group ShinyHunters. The leaked files include anti-cheat source code, player analytics, and game assets, along with Zendesk support tickets. This breach raises concerns about the security of user data and the integrity of the games produced by Rockstar. Game developers and players alike should be aware of the potential risks associated with such leaks, including the possibility of cheating and exploitation in online games. The data was reportedly obtained through a third-party service called Anodot, highlighting the vulnerabilities that can arise from third-party integrations.

Read Original

RCI Hospitality, a major player in the nightclub industry, has reported a data breach due to an IDOR (Insecure Direct Object Reference) vulnerability in RCI Internet Services. This security flaw exposed sensitive contractor data, potentially affecting individuals associated with the company. The breach was disclosed in a filing with the Securities and Exchange Commission (SEC), indicating that the company is taking the matter seriously. This incident raises concerns about data security in the hospitality sector, as breaches can lead to identity theft and other malicious activities. Stakeholders will need to monitor the situation closely as RCI investigates the extent of the exposure and implements necessary safeguards.

Read Original

Basic-Fit, a popular fitness chain in Europe, has reported a significant data breach affecting approximately one million of its customers. Hackers managed to infiltrate the company's systems and accessed sensitive information. While Basic-Fit has not specified exactly what data was compromised, breaches of this nature often involve personal details such as names, email addresses, and possibly payment information. This incident raises concerns about the security of customer data in the fitness industry, especially as more people rely on online services for their health and fitness needs. Customers are advised to monitor their accounts for any unusual activity and consider changing their passwords to enhance their security.

Read Original
Actively Exploited

Rockstar Games has recently experienced a data breach due to a security incident involving Anodot, a data analytics company. The ShinyHunters extortion group has leaked sensitive analytics data stolen from Rockstar on their data leak site. This incident raises concerns for the gaming community as it not only affects Rockstar but also puts user data at risk. The leaked information could potentially be used for further targeted attacks or to exploit vulnerabilities in Rockstar's systems. It underscores the importance for companies to bolster their security measures in the face of such threats.

Read Original

Booking.com has reported a data breach involving unauthorized access to its systems, which has compromised sensitive reservation and user data. The company is urging affected users to reset their reservation PINs as a precautionary measure. This incident raises significant concerns for travelers who use the booking platform, as the exposed data could potentially be used for fraudulent activities. Booking.com has not disclosed the exact number of users affected or the specific data that was accessed, but the breach underscores the ongoing risks associated with online booking systems. Users are advised to monitor their accounts for any suspicious activity and to take steps to secure their information.

Read Original

Booking.com has reported that hackers gained access to user information, although the company has not disclosed how many customers were affected. They have stated that the situation has been contained, but specifics about the type of data compromised remain unclear. This incident raises concerns for users who may have shared sensitive booking details on the platform. Protecting user data is crucial for maintaining trust in online services, especially in industries like travel where personal information is frequently exchanged. Booking.com will likely need to assess its security measures to prevent future breaches and reassure customers about their data safety.

Read Original

A new infostealer called 'Storm' has emerged, capable of hijacking user sessions by decrypting data on the server side rather than locally. This technique allows attackers to bypass traditional security measures like passwords and multi-factor authentication (MFA). Researchers from Varonis have demonstrated how the infostealer sends sensitive browser data directly to the attackers' servers, raising significant concerns about user privacy and account security. The implications are serious, as organizations relying on standard security protocols may find themselves vulnerable to these sophisticated attacks. Companies should be vigilant and assess their security measures to protect against this evolving threat.

Read Original
Critical
Hacker Used Claude Code, GPT-4.1 to Exfiltrate Hundreds of Millions of Mexican Records

Hackread – Cybersecurity News, Data Breaches, AI and More

Actively Exploited

A hacker has reportedly used advanced AI tools, Claude Code and GPT-4.1, to steal personal records of hundreds of millions of Mexican citizens from nine different government agencies. This breach raises serious concerns about data security and the potential misuse of sensitive information. The stolen records likely include personal identifiers, which could lead to identity theft or fraud. The incident highlights vulnerabilities in governmental data protection practices and the growing capabilities of cybercriminals using AI for malicious purposes. Authorities will need to investigate the breach thoroughly and implement stronger security measures to protect citizen data in the future.

Read Original
Critical
ShinyHunters Claims Rockstar Games Snowflake Breach via Anodot

Hackread – Cybersecurity News, Data Breaches, AI and More

Actively Exploited

ShinyHunters, a known hacking group, claims to have gained access to data from Rockstar Games' Snowflake platform due to a breach involving Anodot, a data analytics company. They have threatened to leak this data on April 14 unless their ransom demands are met. This incident raises concerns about the security of sensitive information related to Rockstar, a major player in the gaming industry. If the breach is legitimate, it could expose user data and proprietary information, impacting both the company and its customers. The situation is still developing, and Rockstar Games has not yet confirmed the breach or provided details on any potential data compromise.

Read Original

Hims, a telehealth company, has suffered a data breach that exposes sensitive personal health information (PHI) of its users. The breach could reveal details about users' conditions, such as baldness, obesity, or erectile dysfunction. The attackers may misuse this data for identity theft, targeted phishing scams, or other malicious activities. This incident raises serious concerns about the protection of personal health data in the telehealth sector, highlighting the ongoing challenges companies face in safeguarding sensitive information. Users of Hims should be vigilant about potential phishing attempts and monitor their accounts for unusual activity.

Read Original
Critical
UNC6783 Hackers Use Fake Okta Pages in Corporate Breach Campaign

Hackread – Cybersecurity News, Data Breaches, AI and More

Actively Exploited

Hackers identified as UNC6783 are targeting corporations by impersonating support staff and creating fake Okta login pages. They use social engineering techniques to trick employees into providing access to corporate systems, leading to the theft of sensitive data. This tactic raises concerns for companies relying on Okta for identity management, as it demonstrates how attackers can exploit trust and established processes. Organizations need to enhance their security awareness training and implement stronger verification measures to protect against such deceptive practices. The implications of these breaches could be severe, affecting not just the companies involved but also their customers and partners.

Read Original

In December 2025, hackers successfully breached Eurail's systems, resulting in the theft of personal information belonging to 308,777 travelers. The compromised data includes names and passport numbers, raising significant concerns about potential identity theft and the misuse of sensitive information. Eurail is now in the process of notifying those affected by the breach, emphasizing the urgent need for vigilance among individuals whose data may be at risk. This incident underscores the ongoing vulnerability of companies to cyberattacks and the importance of implementing stronger security measures to protect customer information.

Read Original

ChipSoft, a Dutch healthcare software provider, has been hit by a ransomware attack that has disrupted its online services. The attack forced the company to take its website and digital services offline, affecting both patients and healthcare providers who rely on their systems for medical information and services. This incident raises concerns about the security of healthcare IT systems, especially as they handle sensitive patient data. The downtime could lead to delays in patient care and disrupt operations for healthcare professionals. As ransomware attacks continue to pose a significant threat to the healthcare sector, this incident serves as a reminder of the vulnerabilities present in digital health infrastructure.

Read Original
PreviousPage 14 of 37Next