A ransomware attack on KFC, Pizza Hut, and Taco Bell parent company Yum! Brands shut down 300 restaurants in the United Kingdom and leaked the company's corporate data.
T-Mobile has begun notifying 37 million prepaid and post subscribers whose personal information was accessed by unauthorized bad actors in an unsecured API data breach.
GoTo says that the stolen information varies by product, but encryption keys that were also taken in the hack will grant access to "a portion" of the encrypted backups that were stolen.
Meta is framing the lawsuit as an opening volley in a war against data scraping and invasive surveillance by law enforcement partners. The surveillance company has clearly gone farther than is usual given the creation of some 38,000 fake accounts.
Nissan said a third-party data breach allowed hackers to access and exfiltrate customer information for software testing but stored on a misconfigured cloud service by a contracted software development firm.
With a total of €2.92 billion levied throughout the bloc in 2022, GDPR fines are up in spite of a small drop in the overall data breach count as the bloc eyes stronger regulation for AI.
2020 and 2021 were record years for ransomware payments at about $765 million. The take collected by ransomware operators is now down 40% to $457 million in 2022.
The FTX recovery team says that it has recovered about $5 billion at this point, but that a significant portion of the remaining shortfall is due to almost half a billion in stolen crypto.
The Mailchimp security breach appears to have lasted for less than a full day. The company says that client login information was not compromised, but customer support tools were used to send phishing emails.
Though it did not suffer a security breach, PayPal is reporting that a massive credential stuffing attack appears to have yielded access to about 35,000 PayPal accounts.