A third-party platform that has the ability to pull fitness tracking data from nearly all of the major wearable device providers has been breached, leaving about 61 million records exposed.
A threat actor linked to Babuk and Groove ransomware gangs leaked login credentials of 500,000 Fortinet VPN accounts to promote a new underground hacking forum.
Microsoft Power Apps appears to list all data types as public unless the default settings are changed. The data leak exposed several coronavirus tracing and vaccination portals, as well as at least one job applicant database that contained social security numbers.
A Japanese government official disclosed a data leak that exposed Olympics ticket buyers' account credentials but the Olympics organizers denied being the source of the breach.
The Pegasus spyware sold by NSO Group, supposed to only be available to law enforcement and intelligence agencies for legitimate and legal uses, appears to be widely available to repressive governments with little oversight.
Alibaba's web scraping data leak exposed over 1 billion user records leading to the imprisonment of the implicated software developer and his employer for three years.
China-based game developer exposed personal information and transaction records of nearly 6 million Battle for the Galaxy players in an unsecured ElasticSearch data leak.
Brands need to safeguard their social presence, protect their customers’ data and avoid account takeover fraud after massive data leaks like Facebook’s.
One would hope that credit bureau Experian had learned a lesson about data leaks but the agency has a new API security vulnerability that appears to have leaked the credit scores of nearly every American that has one.
The first signs of legal action against Facebook over the recent data leak have appeared, as an EU digital privacy group has announced plans to take the social media giant to court in Ireland.