The European Commission is currently investigating a cyberattack that appears to have breached its mobile device management system. Initial findings suggest that attackers may have accessed some personal information of staff members, including names and phone numbers. However, there are no indications that more sensitive data has been compromised so far. This incident raises concerns about the security of governmental systems and the potential risks to employee privacy. As investigations continue, it remains crucial for organizations to maintain strong cybersecurity measures to protect sensitive information from similar attacks.
Articles tagged "Data Breach"
Found 549 articles
SmarterTools has reported a ransomware attack that compromised a data center used for quality control testing. The breach occurred due to a vulnerability in one of SmarterTools' own products, which allowed hackers to infiltrate their systems. As a result, customers have been affected, although specific details on the extent of the impact have not been disclosed. This incident raises concerns about the security of software products, especially those used in business environments. Companies using SmarterTools' services should review their security measures and remain vigilant for any unusual activity.
BleepingComputer
The European Commission has confirmed a data breach linked to its mobile device management platform, prompting an investigation into the incident. While specific details about the number of affected staff or the nature of the exposed data have not been released, the breach raises concerns about the security of sensitive information held by the Commission. This incident is particularly significant given the Commission's role in managing policies and regulations across the European Union. Officials are working to understand the scope of the breach and are likely to implement measures to prevent future incidents. The situation underscores the ongoing challenges organizations face in protecting their data against cyber threats.
SCM feed for Latest
In 2025, Proton's Data Breach Observatory reported a staggering 794 major data breaches that collectively exposed over 306 million records. These incidents primarily targeted small businesses, highlighting a significant vulnerability within this sector. The breaches varied in nature, but they all led to sensitive information being compromised, which can have dire consequences for both the businesses involved and their customers. The data exposed in these breaches could include personal information, financial details, and other confidential records, raising concerns about identity theft and fraud. This situation underscores the urgent need for small businesses to bolster their cybersecurity measures to protect against such attacks.
Infosecurity Magazine
Substack has confirmed that it experienced a data breach, although the company did not disclose how many users were affected. While the details surrounding the breach remain limited, Substack mentioned that only a small amount of user data was compromised. This incident raises concerns about the security of users' personal information on the platform, especially given the growing number of breaches affecting online services. Users of Substack should remain vigilant, as data breaches can lead to phishing attempts and other security risks. The lack of specific details about the breach leaves many questions unanswered, particularly regarding what types of data were compromised and how the breach occurred.
Hackread – Cybersecurity News, Data Breaches, AI and More
Flickr has informed its users about a data breach linked to a security flaw in a third-party email vendor. This issue may have led to the exposure of user information, including usernames, email addresses, IP addresses, and activity logs. Although Flickr did not specify how many users were affected, the incident raises concerns about the security of personal data held by external partners. Users should be vigilant about potential phishing attempts or unauthorized access to their accounts, as this type of leaked information can often be exploited for malicious purposes. The situation serves as a reminder for companies to carefully vet their third-party vendors to protect user data.
Spain's Ministry of Science has taken precautionary measures by partially shutting down its IT systems following reports of a potential data breach. This move affects various services that interact with citizens and businesses, although specific details about the nature of the breach and the data involved remain unclear. The shutdown aims to protect sensitive information and prevent further compromise. As the situation develops, officials will likely assess the extent of the breach and restore services as it becomes safe to do so. This incident raises concerns about the security of government systems and the protection of personal data in the digital age.
A recent cybersecurity incident saw attackers breach a cloud environment in just eight minutes, using exposed test credentials that were found in a public S3 bucket. This rapid breach highlights the dangers of improperly secured cloud storage and the need for better credential management practices. Organizations using cloud services should ensure that sensitive information is not publicly accessible and that test credentials are properly safeguarded. The incident serves as a stark reminder that even minor oversights can lead to significant security breaches, potentially compromising sensitive data. Companies need to take immediate action to review their cloud configurations and implement stricter access controls.
SCM feed for Latest
A significant data breach has occurred due to an unsecured Elasticsearch cluster, exposing over 8.7 billion records related to Chinese citizens. This incident is one of the largest data spills linked to the open-source search and analytics tool. The exposed data includes sensitive information, raising serious concerns regarding privacy and security for those affected. Researchers are warning that such massive leaks could lead to identity theft and other malicious activities. It's crucial for organizations using Elasticsearch to ensure their configurations are secure to prevent similar incidents in the future.
Hackers are targeting NGINX servers in a campaign that reroutes user traffic through their own infrastructure. This attack compromises the servers, allowing the perpetrators to intercept and manipulate the data being transmitted. Affected users may experience altered content or be redirected to malicious sites without their knowledge. The incident raises concerns about the security of NGINX, a widely used web server software, and the potential for significant data breaches. Organizations using NGINX should take immediate precautions to safeguard their systems and ensure that their configurations are secure to prevent such hijacking.
A hacktivist group claims to have leaked 2.3 terabytes of data that includes personal information of 36 million Mexican citizens. According to the group, this breach may expose various details, but the Mexican government has stated that no sensitive accounts are at risk. This incident raises concerns about the security of personal data in government databases and the potential for misuse. The scale of the breach indicates a significant vulnerability, which could lead to identity theft or other malicious activities if exploited. As the situation develops, both the government and affected individuals will need to stay vigilant regarding their data security.
SCM feed for Latest
The multiplayer browser-based game NationStates has temporarily shut down its website after a security breach that compromised player data. The incident occurred late last month, prompting immediate action to protect user information. While details on the specific nature of the breach are still emerging, it is clear that players' data may have been accessed by unauthorized individuals. This incident raises concerns about the safety of personal information in online gaming environments and the need for robust security measures. Players of NationStates and other similar platforms should remain vigilant about their data security and be aware of potential phishing attempts or other follow-up attacks related to this breach.
Hackread – Cybersecurity News, Data Breaches, AI and More
Everest ransomware has claimed responsibility for a data breach involving legacy Polycom systems, which are now part of HP Inc. The attackers allege that they have stolen 90GB of internal data from these systems. This incident raises concerns about the security of older technology that may not receive regular updates or patches, leaving them vulnerable to exploitation. Organizations using such legacy systems should assess their security measures and consider upgrading to more secure solutions. The breach not only threatens sensitive internal information but also highlights the risks associated with maintaining outdated technology in a rapidly evolving cybersecurity landscape.
Hackread – Cybersecurity News, Data Breaches, AI, and More
Everest ransomware has claimed responsibility for a data breach affecting legacy Polycom systems owned by HP Inc. The attackers allege that they have stolen around 90GB of internal data. HP has yet to confirm the breach or provide details about the incident. This situation raises concerns about the security of legacy systems, which often have vulnerabilities that can be exploited by cybercriminals. As organizations increasingly rely on such systems, the potential for significant data theft becomes a pressing issue that companies need to address.
Tulsa International Airport has reportedly been compromised by the Qilin ransomware group, which claims to have stolen more than a dozen files from the airport's internal systems. This incident raises concerns about the security of critical infrastructure, as airports handle sensitive data and operations that are vital for public safety and travel. The breach could potentially disrupt airport operations or expose personal information of employees and travelers. As ransomware attacks continue to target essential services, this incident serves as a reminder for organizations to bolster their cybersecurity measures against increasing threats from cybercriminals. The situation is still developing, and further details regarding the extent of the breach and its implications are awaited.