Privacy
-
Ajax says hacker accessed fan data and enabled ticket transfers
AFC Ajax said a hacker accessed parts of its systems and viewed email addresses for a few hundred people and personal details for fewer than 20 people with stadium bans. RTL journalists who were tipped off verified vulnerabilities that they said allowed ticket transfers and broad access to fan records; Ajax says it has patched…
-
Startup Delve accused of supplying fake compliance evidence to customers
An anonymous Substack post accuses Delve of supplying fabricated compliance evidence to hundreds of customers, potentially exposing them to HIPAA criminal liability and GDPR fines. The company posted a blog response calling its product an automation platform.
-
Navia discloses data breach affecting nearly 2.7 million people
A U.S. benefits administrator reported a breach exposing personal data for nearly 2.7 million people after systems were accessed between December 22, 2025 and January 15, 2026. Affected people are being offered free identity monitoring.
-
Aura confirms breach exposed nearly 900,000 marketing contacts
Aura confirmed a breach that exposed nearly 900,000 marketing contacts, including names and emails. The company says 35,000 were customers and that SSNs and financial data were not compromised.
-
Android 17 Beta 2 blocks non-accessibility apps from accessibility API while Advanced Protection Mode is active
Android 17 Beta 2 tests a restriction that blocks non-accessibility apps from the accessibility services API while Advanced Protection Mode is enabled and revokes existing permissions to reduce misuse of the API.
-
European Parliament extends temporary CSAM detection exemption until August 2027
The European Parliament extended a temporary ePrivacy derogation allowing voluntary CSAM detection until 3 August 2027. Lawmakers imposed limits and exclusions for end-to-end encryption as they work to negotiate a permanent legal framework.
-
Starbucks says 889 Partner Central accounts were compromised in employee data breach
Attackers accessed 889 Starbucks Partner Central accounts used by employees. Exposed data includes names, Social Security numbers, dates of birth, and bank account information. Impacted partners are being offered two years of identity theft protection and credit monitoring.
-
Loblaw notifies customers after breach exposes names and contact details
Loblaw notified customers this week that a breach of a contained part of its IT network exposed names phone numbers and email addresses. The company logged customers out and there was no evidence that financial or health data were accessed.
-
Ericsson US discloses data breach after service provider hack
Ericsson Inc. notified individuals that attackers stole employee and customer data after a service provider was hacked. The provider detected the incident in April 2025. Texas filings list 4,377 affected.
-
FBI investigates breach affecting wiretap management system
The FBI is probing a breach that affected an unclassified system used to manage wiretaps and surveillance warrants. The agency began investigating on February 17 after spotting abnormal logs, and said it addressed suspicious activity.
