Data Breach
-
Ransomware breach at Cancer Center exposes participant files including 1990s Social Security numbers
A ransomware attack on August 31, 2025 breached the Cancer Center in Honolulu and stole study participant files including 1990s documents with Social Security numbers, the university said in a report to the state legislature.
-
Endesa discloses customer data breach affecting contract and payment details
Endesa and operator Energía XXI disclosed that hackers accessed a commercial platform and obtained customer contract information, including identity and payment details. The firm serves about 22 million clients and is notifying affected customers.
-
Investors in F5 urged to seek lead plaintiff status after BIG-IP breach and 10.9% share drop
A press release said investors in F5 have until February 17, 2026 to seek lead plaintiff status after the company linked weaker fiscal 2026 guidance to a BIG-IP security breach and a 10.9 percent two-day share decline.
-
Hacker Threw MacBook Air in River after Breach that Exposed 33.7 Million Accounts
Investigators recovered a MacBook Air thrown into a river after a breach that exposed data for 33.7 million users. The company detailed a 1.685 trillion won compensation package and a government-led probe to manage the response.
-
Actor Using Alias 888 Offers More Than 200 GB of Alleged ESA Data
An actor using alias 888 posted on DarkForums on 18 December 2025 offering more than 200 GB of data alleged to be from the European Space Agency. The report has not been independently verified.
-
Korean Air says employee data exposed after supplier hack
Korean Air said an internal notice that employee names and bank account numbers in its ERP were compromised after a hack of its supplier KC&D. Local reporting put the number of exfiltrated records at about 30,000.
-
South Korea to require facial scans for new mobile accounts to curb scams
The South Korean government will require facial recognition scans for new mobile accounts to curb scams, using biometric data stored in carriers’ PASS apps, after major data breaches and a large compensation order for SK Telecom customers.
-
University of Sydney says coding repository breach exposed personal data of more than 27,000
The University of Sydney said an online coding repository was breached, exposing files with personal information for more than 27,000 current and former staff and students. The university blocked access, notified regulators, began notifying affected people and set up support services, but said there was no evidence the data has been published or misused.
-
PornHub targeted by ShinyHunters after Premium member activity data reportedly stolen
PornHub says it is being extorted by the ShinyHunters gang after activity data for some Premium members was reportedly stolen in a Mixpanel-related incident; Mixpanel says it can find no indication the records were taken in its November 2025 incident.
-
700Credit breach exposes data of 5.8 million dealership customers
700Credit said a breach that originated at an integration partner exposed personal data of more than 5.8 million vehicle dealership customers, including Social Security numbers; the company is notifying affected individuals and offering TransUnion monitoring.
