Data Breach
-
Conduent breach exposed personal data of nearly 17,000 Volvo employees
Nearly 17,000 US Volvo employees had personal data exposed after a Conduent breach. A Maine Attorney General filing shows 16,991 people were affected, with intruder access dated October 21, 2024 to January 13, 2025.
-
Spain Ministry of Science partially shuts electronic services after technical incident
A technical incident prompted a partial shutdown of Spain’s Ministry of Science electronic headquarters, suspending administrative procedures. A threat actor claims an IDOR exploit and leaked data samples, while the ministry says the closure is under assessment.
-
Substack notifies users after email and phone data stolen in October 2025
Substack says attackers accessed email addresses, phone numbers and metadata in October 2025 and discovered the issue on February 3 2026. A posted database claims 697,313 records were leaked. The company says no financial data was exposed.
-
NationStates confirms data breach after player gained server access
NationStates took its site offline on January 27, 2026 after an unauthorized user gained remote code execution on the production server and copied user data. Exposed items include email addresses and MD5 password hashes.
-
TriZetto breach may have exposed PHI for more than 700,000, Oregon providers to notify patients
An intrusion into TriZetto Provider Solutions discovered in October 2025 may have exposed protected health information for more than 700,000 people. Local Oregon providers will notify thousands of patients about exposed records.
-
GDPR fines pass £1 billion as daily breach reports top 400
Europe’s GDPR fines topped £1 billion in 2025 and authorities recorded an average of 443 breach notifications a day, a 22 percent rise and the first time daily reports passed 400 since GDPR took effect.
-
Tennessee man pleads guilty after hacking Supreme Court e-filing system and leaking VA and AmeriCorps data
A Tennessee man pleaded guilty after using stolen credentials to access the Supreme Court e-filing system at least 25 times and to breach AmeriCorps and VA accounts between August and October 2023, prosecutors said.
-
France fines Free and Free Mobile €42 million after breach exposed 24.6 million records
CNIL imposed a collective €42 million fine on Free and Free Mobile after an October 2024 breach exposed 24,633,469 customer records including IBANs. The decision cited weak VPN authentication, ineffective detection and poor data retention controls.
-
Monroe University data breach exposed information on 320,973 people
Monroe University said a December 2024 cyberattack exposed personal, financial, and health data for 320,973 people. Notifications began in January and affected individuals are offered one year of free credit monitoring.
-
Ransomware breach at Cancer Center exposes participant files including 1990s Social Security numbers
A ransomware attack on August 31, 2025 breached the Cancer Center in Honolulu and stole study participant files including 1990s documents with Social Security numbers, the university said in a report to the state legislature.
