Data Breaches

Breach disclosures, compromised data, impact

35 stories

Very Bearish 8

Trump Alleges China Breached 220M Voter Files: Election Security in Crisis

President Trump’s declassification announcement alleging a 220 million voter file compromise by China reignites debate over election infrastructure security. Cybersecurity professionals must assess the credibility of the claims and the potential exposure of sensitive voter data. The incident underscores persistent risks of nation-state cyber espionage targeting democratic processes.

Verified by 2 sources
Bearish 8

June 23 breach: How Partnered Health lost 21 clinics' patient data

A detailed look at the June 23 cyberattack on Partnered Health that compromised 21 clinics, stealing highly sensitive medical identities. With an NSW court injunction in place and an ongoing investigation, the incident highlights the preferred techniques of threat actors targeting healthcare and the critical need for segmentation and rapid response in large hospital networks.

Verified by 14 sources
Neutral 8

Partnered Health files injunction after 21-clinic data heist

Partnered Health’s swift application for an interim Supreme Court injunction reveals a legal tactic increasingly used by breached Australian firms, while threat actors net a rich haul of identity and health records.

Verified by 8 sources
Very Bearish 8

Tata Hack Leaks 200K+ Apple/Tesla Files; 630 GB Exposed on Dark Web

Ransomware group World Leaks breached Tata Electronics, exposing over 200,000 files containing Apple and Tesla trade secrets. The 630 GB data dump includes proprietary design documents and employee passports, highlighting critical supply chain cyber risks. This incident underscores the urgent need for OT security and dark web monitoring.

Verified by 2 sources
Bearish 6

4 in 5 Australians Fear AI Data Leaks in Politics — Cyber Threats Loom

Cybersecurity threats from AI in politics are a top concern for 80% of Australians, according to an ANU-Google report. The risk of sensitive political data breaches, deepfake attacks, and reliance on insecure foreign AI models creates a new attack surface. Cyber experts call for urgent security standards.

Verified by 8 sources
Neutral 5

866k SARs at risk: Reform demands NCA probe into insider data leak

Amid 866,616 SARs flagged in a year, Reform UK claims the NCA may have suffered an insider data breach that exposed Richard Tice’s financial intelligence to the press. The incident highlights cybersecurity vulnerabilities in handling highly sensitive anti-money laundering reports.

Verified by 2 sources
Bearish 7

Credential Stuffing to 6.9M Exposures: 23andMe Breach Ends in $47M Penalty

The 2023 23andMe attack, which started with simply reusing leaked credentials, ultimately exposed the genetic and health data of 6.9 million users—and now costs $46.75 million. For cybersecurity teams, it is a textbook case of why basic anti‑credential‑stuffing controls and multi‑factor authentication are non‑negotiable for any platform holding sensitive data.

Very Bearish 7

Misconfigured Microsoft 365 Exposes 2000 Student Files in NSW Breach

A simple Microsoft 365 settings error allowed two students to access 2,000 confidential files, one of 491 cybersecurity incidents logged in a damning NSW audit. The report exposes systemic weaknesses in cloud configuration management and third‑party app vetting across the state’s schools.

Verified by 3 sources
Very Bearish 8

CBA Insider Breach: 2 Junior EY Staffers Accessed High-Profile Bank Accounts

A serious insider threat event at Commonwealth Bank saw two EY secondees, aged 21 and 25, misuse system access to view Prime Minister Albanese’s personal banking data. The breach underscores the peril of embedding third-party personnel into critical financial infrastructure and highlights the human factor in cybersecurity.

Verified by 2 sources
Bearish 8

World Leaks ransomware group leaks 200K Apple files in Tata supply chain hack

The cyberattack on Tata Electronics by the World Leaks group resulted in the exfiltration of 200,000 files containing Apple’s upcoming product details. This breach exemplifies the growing threat of third-party supply chain attacks and double-extortion ransomware.

Verified by 5 sources
Very Bearish 8

630GB data dump exposes Apple and Tesla secrets in factory breach

Ransomware group World Leaks posted 630GB of manufacturing data from Tata Electronics, including iPhone QC specs and Tesla trade secrets. The breach highlights how attackers increasingly target factory floors, not just corporate IT. As Apple and Tesla launch investigations, the incident raises urgent questions about OT security in global supply chains.

Verified by 5 sources
Bearish 7

World Leaks dumps 200K+ Apple, Tesla design files in Tata Electronics ransomware attack

Ransomware group World Leaks posted over 200,000 sensitive documents on the dark web from Tata Electronics, including purported Apple and Tesla component designs. The attack underscores the growing trend of double-extortion targeting manufacturing, with Tata now performing a forensic audit and locking down remote access.

Verified by 2 sources
Bearish 6

Dialog’s Misconfig Exposed 113 VIP Members—Claimed Hack Was Just Bad Code

Despite Dialog’s claim of a sophisticated hack, WIRED’s analysis shows a simple website misconfiguration exposed data on 200 attendees of its elite retreats, including top government officials. The incident underscores how basic security failures can endanger high-value targets and the importance of secure development practices.

Verified by 2 sources
Very Bearish 7

Phishing Attack Steals 1.4M Records from Xsolis: A Healthcare Security Wake-Up

A targeted phishing attack on Xsolis led to the exfiltration of highly sensitive personal and medical data affecting 1.4 million. The incident, detected in two days but notified months later, exemplifies persistent healthcare security gaps in email defense and incident response.

Verified by 2 sources
Very Bearish 6

ShinyHunters and Icarus claim 2 high-impact breaches in one week

Two distinct threat groups, ShinyHunters and Icarus, have publicly claimed responsibility for separate breaches at JCPenney/Catalyst Brands and The Credit Pros, respectively. The attacks expose evolving cybercriminal tactics, including Salesforce environment exploitation and high-value PII harvesting.

Verified by 3 sources
Bearish 8

ShinyHunters & FulcrumSec Ramp Up EdTech Attacks: 137K Accounts Stolen

Two major threat actor groups are driving a crisis in education technology, with ShinyHunters stealing 137,000 staff records via Infinite Campus and FulcrumSec paralyzing Global Schools Foundation. The incidents reveal a shift in cybercriminal focus toward low-defence, high-value academic data repositories.

Verified by 2 sources
Bearish 7

4 Cyber Risks in Meta’s Smart Glasses: EU Warns of Covert Surveillance

The EU’s investigation into smart glasses exposes critical cybersecurity risks, from covert recording to unauthorized data sharing. Meta’s subcontractor scandal shows how raw footage can be misused, alarming CISOs. Expect calls for mandatory encryption, on-device processing, and clear recording indicators.

Verified by 2 sources
Bearish 7

Crunchyroll Investigates Breach of 6.8 Million Users via Third-Party Support

Sony-owned streaming giant Crunchyroll is investigating a significant data breach after hackers allegedly stole 8 million support tickets containing personal data for 6.8 million unique users. The breach originated from a compromised third-party support agent at Telus International, highlighting ongoing vulnerabilities in the global supply chain.

Verified by 2 sources
Neutral 6

Coupang Nears Full User Recovery Following Massive 33.7M Record Data Breach

South Korean e-commerce giant Coupang has nearly restored its active user base to pre-breach levels following a massive November 2025 security incident that exposed 33.7 million customers. The recovery, driven by aggressive compensation packages and a strategic pivot toward Nvidia-powered AI infrastructure, signals a resilient turnaround for the NYSE-listed firm.

Verified by 2 sources
Very Bearish 8

Hacker Breaches P3 Global Intel, Exposing 8 Million Confidential Police Tips

A hacker known as 'Internet Yiff Machine' has reportedly compromised P3 Global Intel, a subsidiary of Navigate360, exfiltrating 93GB of data containing over 8 million confidential law enforcement tips. The breach, achieved through social engineering and vulnerability exploitation, poses a severe risk to the anonymity of informants and the integrity of ongoing investigations.

Verified by 2 sources
Bearish 6

Ericsson Faces US Lawsuit Following Major Data Breach Affecting Thousands

A class-action lawsuit has been filed against Swedish telecommunications giant Ericsson in a US court following a data breach reported earlier this month. The legal action alleges negligence in protecting sensitive information after a security incident reportedly impacted thousands of individuals.

Verified by 2 sources
Neutral 5

Loblaw Cos. Ltd. Reports Data Breach Affecting Customer Personal Information

Loblaw Cos. Ltd. has disclosed a data breach involving a criminal third-party that accessed customer names, phone numbers, and email addresses. While the company describes the incident as a low-level breach affecting a non-critical part of its network, it has proactively logged all customers out of their accounts to secure the environment.

Verified by 2 sources
Neutral 5

Loblaw Discloses 'Low-Level' Data Breach; Initiates Forensic Investigation

Loblaw Companies Limited has notified customers of a 'low-level' data breach and launched a forensic investigation into its IT systems. The Canadian retail giant is currently assessing the scope of the unauthorized access while maintaining transparency with affected users.

Verified by 3 sources
Very Bearish 8

DOGE Staffer Accused of Accessing 500M Social Security Records

A whistleblower complaint alleges a former Department of Government Efficiency (DOGE) employee exploited 'God-level' access to exfiltrate data on 500 million Americans from Social Security Administration databases. The staffer reportedly intended to share the data with a private employer and expressed confidence in receiving a presidential pardon for the actions.

Verified by 2 sources
Very Bearish 8

Canadian Tire Breach Exposes 38 Million Accounts in Massive Data Leak

A significant security breach at Canadian Tire has compromised the personal information of over 38 million account holders, including contact details and encrypted passwords. The scale of the leak, which nearly matches the entire population of Canada, signals a major systemic failure in the retailer's data protection protocols.

Verified by 2 sources
Bearish 7

Coupang's $26M Q4 Loss Signals Deepening Financial Toll of Record Data Breach

Coupang reported a surprise $26 million loss in the fourth quarter of 2025 as the fallout from a massive 34-million-user data breach eroded consumer trust and triggered a costly compensation campaign. Despite 11% revenue growth, the e-commerce giant faces significant regulatory scrutiny and a 30% stock decline since the incident was disclosed.

Verified by 2 sources
Bearish 7

Coupang Faces Market Turmoil as Data Breach Fallout Erodes E-commerce Dominance

South Korean e-commerce leader Coupang is grappling with a significant loss of consumer trust and market value following a data breach affecting 34 million users. As the Science Ministry attributes the leak to management failures, rivals like Naver are capitalizing on the reputational damage, leading to a sharp decline in Coupang's active users and stock price.

Verified by 2 sources
Neutral 5

Taipei Grand Hotel Probes Potential Data Breach Following Cyberattack

The iconic Grand Hotel Taipei has issued a public warning regarding a potential data breach after detecting a cyberattack on its internal systems. As a primary venue for diplomatic functions, the incident raises significant concerns over the exposure of sensitive guest information and potential espionage risks.

Verified by 2 sources
Bearish 7

Abu Dhabi Finance Summit Data Leak Exposes Passports of Global Elite

A security lapse at Abu Dhabi Finance Week (ADFW) exposed the passport scans and identity documents of over 700 high-profile attendees, including former UK PM David Cameron and billionaire Alan Howard. The data was discovered on an unprotected cloud server managed by a third-party vendor, highlighting persistent risks in event-related data management.

Verified by 2 sources

About Cybersecurity Data Breaches coverage

According to our own tracking database, this category has accumulated 35 data breaches stories since coverage began. This page aggregates the latest data breaches stories within our cybersecurity coverage area. Every story is cross-referenced across multiple primary sources, scored for sentiment and operational impact, and timestamped so fresh developments surface first. We track breach disclosures, compromised data, impact and surface the angles a domain expert would actually read.

Story selection follows our editorial methodology — impact scoring weights regulatory, financial, and operational developments distinctly. Sentiment is classified across five tiers via supervised classification trained on labeled industry corpora. See our glossary for term definitions and our trends index for longitudinal patterns across the cybersecurity beat.

SignalWhat it tells you
Verified by N sourcesConfidence the story isn't a single-source rumor — N≥2 means the development is independently corroborated.
Impact score (1-10)Estimated regulatory, financial, or operational impact. 8+ indicates a story experienced operators should act on.
SentimentFive-tier classification (very bullish through very bearish) trained on labeled cybersecurity-specific corpora.
Time stampRecency. Fresh stories (under 1h) render with a highlighted timestamp; stale stories (≥24h) render dimmed.