Latest News: Data Breaches

Google revealed that it’s the latest major company victim in a series of data breaches involving the exploitation of Salesforce CRM users. ShinyHunter, the threat actor, used social engineering tactics to impersonate IT support staff in phone calls to employees of target businesses. As of now,

A jury found Meta guilty of contravening the California Invasion of Privacy Act for using data from the female health tracking app, Flo Health. A co-defendant in the trial, Flo, had reached a settlement with the plaintiffs earlier in the trial. Claiming more than 420 million users worldwide, Flo

Tea, a viral dating advice app, suffered a major data leak, exposing 72,000 user images as well as direct messages. According to reports, the app itself left a Firebase storage bucket publicly accessible, with no authentication, encryption, or access controls — meaning anyone with the URL could

Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about an unencrypted and non-password-protected database that contained 3,587,960 records. The database, which presumably belongs to an Australian fashion brand, held invoices, shipping information, and return details.

Cybersecurity researchers have discovered what’s believed to be the largest-ever data breach, consisting of up to 16 billion login credentials. The data consists of usernames, passwords, session cookies, and authentication tokens from almost every major website and online service, including

A California court has ordered Google to pay $314 million in damages regarding allegations that it misappropriated users’ cellular data to transfer background data for its services without their consent. According to the plaintiffs, these transfers would continue even when the phone is in a

Cybersecurity researcher Jeremiah Fowler discovered and reported to vpnMentor an unencrypted and non-password-protected database that contained 245,949 records. The database, which presumably belonged to a tax credit consulting agency, held PII, driver’s licenses, military discharge forms,

Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about an unencrypted and non-password-protected database that contained 3,637,107 records that presumably belong to a no-coding app-building platform. The publicly exposed database was not password-protected or

Cybersecurity researcher Jeremiah Fowler discovered an unprotected cloud system exposing 184 million credentials. The collection, containing around 47.42 gigabytes of data, included sensitive information from popular platforms such as Instagram, Facebook, and Snapchat, as well as government

Crypto exchange giant Coinbase is reeling from a cyberattack that exposed sensitive customer data, prompted a $20 million extortion attempt, and could cost the company up to $400 million in remediation. The breach, disclosed this week via Coinbase’s official blog and a filing with U.S. regulators,