Data Breaches
33.7M user leak → US investor lawsuits → Congressional intervention → Delayed security consultations. How a consumer data breach became a national security crisis. SEOUL — What began as a corporate data leak has spiraled into an unprecedented diplomatic standoff between Washington and Seoul. The Coupang data breach, which exposed the personal information
Data Breaches
Minidoka Memorial Hospital transferred emergency patients after an imaging outage; a new ransomware group demands payment for an alleged 2.3 million files. RUPERT, ID — A quiet Easter morning in rural Idaho was shattered on April 5, 2026, when Minidoka Memorial Hospital (MMH) fell victim to a cyberattack that paralyzed
Data Breaches
The municipality of Epe confirms a massive exfiltration event impacting nearly all 32,000 residents; authorities offer free identity document replacements as theft concerns mount. EPE, NETHERLANDS — The municipality of Epe has officially confirmed that a cyberattack first detected in March 2026 resulted in the theft of personal data belonging
Data Breaches
UK Biobank's complete dataset exposed via three Chinese research institutions; listings removed after UK-China government intervention. LONDON, UK — In what is being described as a geopolitical health data security scandal, the UK government has confirmed that confidential medical and genomic data belonging to all 500,000 UK Biobank
Data Breaches
Following our initial report on the Everest ransomware group's claims, Citizens Financial Group now faces a dual-front battle as federal litigation arrives in Rhode Island. PROVIDENCE, RI — The legal fallout from the Everest ransomware group’s alleged breach of Citizens Bank has accelerated with the filing of two
Data Breaches
Vendors' pen-testing credentials and URL guessing gave Discord hackers weeks of access to a cybersecurity superweapon Anthropic warned was too risky for public release. SAN FRANCISCO, CA — On the same day Anthropic prepared to roll out its most powerful and restricted cybersecurity model to date, an unauthorized group of
Data Breaches
ShinyHunters ransomware group accessed names, SSNs, and financial accounts of 47,876 customers; multiple class actions allege inadequate security. MINNEAPOLIS, MN — For the second time in less than half a year, financial services giant Ameriprise Financial is reeling from a major cybersecurity failure. The firm has confirmed that an unauthorized
Data Breaches
Quorum Cyber analysis reveals ransomware (+21%), hacktivism (+75%), and data breaches (+73%) converging on research-rich academic targets. EDINBURGH, UK — Global higher education is facing a "convergence of threats" as a new analysis from Quorum Cyber reveals a staggering 63% year-over-year increase in verified cyberattacks. Between November 2024 and
Data Breaches
PIPC's record penalty cites an employee workstation hack, a 72-hour reporting delay, and nonexistent database security controls. SEOUL, South Korea — South Korea’s Personal Information Protection Commission (PIPC) has levied a record 1.21 billion KRW ($815,000) fine against Duo, the nation’s largest matchmaking service, following
Data Breaches
The Los Angeles County Office of Education (LACOE) has launched a forensic investigation into potential unauthorized access to its tax document portal after fraudulent tax returns were reportedly filed in the names of school district employees. DOWNEY, CA — The Los Angeles County Office of Education (LACOE) is investigating a potential
Data Breaches
Major Dutch e-commerce platform bol.com is investigating unverified claims that a database containing approximately 400,000 customer records was offered for sale online, though the company currently reports no evidence of a security incident. UTRECHT, NETHERLANDS — Leading Dutch retailer bol.com addressed a series of unverified allegations between April
Data Breaches
Agoda has issued a formal denial following unverified claims on a dark web forum that a dataset containing 82 million customer records was stolen from its systems. SINGAPORE — Digital travel platform Agoda denied unverified claims on April 22, 2026, that a threat actor exfiltrated a database containing 82 million user