The breach of Optus, the second-largest telecoms company in Australia, created a leak of about 10 million records of personal information. The government says that it is time for new privacy rules.
Optus disclosed a cyber attack that compromised the personal data of up to 10 million Australians with a threat actor initially demanding $1 million and several sources suggesting human error as the cause.
Hackers gained access to sensitive personal information of American Airlines’ customers and employees in a data breach linked to a phishing campaign that led to the unauthorized access of employee mailboxes.
A data breach of the third largest storage space provider and popular moving company, U-Haul, exposed sensitive customer data in the contractual information of 2.2 million users over five months.
Hundreds of NATO documents of "extreme gravity" were reportedly stolen and made available on the dark web, and the Portuguese government is facing tough questions about why the breach was not discovered for weeks.
A hacker is claiming to have stolen over one billion user records, but security researchers are not convinced that this came from a legitimate TikTok hack or that account takeovers were involved.
Plex media streaming platform issued password reset notices to millions of users after an August data breach exposed a database containing account information.
The attack the food delivery company DoorDash appears to have been part of the ongoing "0ktapus" campaign, which first made news when it ensnared Twilio. Customers may have had contact information exposed along with order information and partial credit card information.
Data breach on the US federal courts record systems involved "three foreign hostile actors" and the attack was "startling in breadth and scope" and may have had a "staggering" impact on the Department of Justice.
Neopets virtual pet website suffered a data breach that allowed hackers to access the platform's source code and personal information of 69 million users. Hacker continues to maintain access after confirmed data breach.