Data Breaches

Durex India, the Indian branch of the British condom-maker, has exposed sensitive customer information collected through its official website, according to a report by TechCrunch. The security breach, first identified by researcher Sourajeet Majumder, revealed personal details including customers' full names, contact information, email addresses, shipping addresses, and order details. While the exact number of...

The Big Issue Group, a renowned social enterprise behind one of the world's largest street newspapers, has issued an apology after a ransomware attack in March 2024 compromised personal data, including individuals' addresses and bank account details. The UK Information Commissioner's Office and law enforcement have been notified of the incident, which has raised significant...

A customer of Fota Wildlife Park has reported that cybercriminals attempted to empty his bank account after purchasing online tickets to the park, following a massive cyberattack that has endangered the financial security of its visitors. Bryan Jacob, a physiotherapist from Cork, revealed that after booking tickets on the park’s website on July 29, he...

Several NHS staff in Scotland have had their mobile phone numbers exposed following a cybersecurity incident involving a third-party supplier. The breach, which affected staff across multiple health boards, was confirmed by NHS Grampian and NHS Dumfries and Galloway, both of which have issued alerts to their employees. NHS National Services Scotland acknowledged the incident,...

Crescent Community Health Center announced Thursday that it experienced a significant data breach in December 2023, potentially compromising the sensitive personal information of up to 501 pharmacy patients. The breach, which occurred at Crescent's InFocus Pharmacy between December 10 and 13, may have exposed a wide range of data, including names, addresses, dates of...

Interactive Brokers (IB), a prominent broker-dealer, reported a data breach in January that exposed sensitive consumer information. The disclosure came in a notice filed with the Massachusetts attorney general on May 16, detailing the breach's discovery and subsequent actions. According to Interactive Brokers, the breach occurred when an unauthorized party gained access to an employee’s...

The Police Service of Northern Ireland (PSNI) is facing a proposed £750,000 fine from the UK's Information Commissioner's Office (ICO) for a significant data breach last summer. The breach involved the inadvertent release of personal information about 9,483 PSNI officers and staff, which subsequently fell into the hands of dissident republicans and others. UK Information...

Superior Air-Ground Ambulance Service, Inc. (“Superior”) has disclosed a significant data breach affecting sensitive information of its consumers. On May 10, 2024, Superior filed a notice with the U.S. Department of Health and Human Services Office for Civil Rights, detailing that an unauthorized actor accessed and copied files from its IT network. This breach...

Patriot Mobile, a U.S.-based cell carrier, has confirmed a data breach compromising the personal information of its subscribers. The breach, which includes full names, email addresses, home ZIP codes, and account PINs, affects the company's subscriber base of fewer than 100,000 customers. This incident was uncovered by TechCrunch, which also verified the authenticity of...

Nissan North America has confirmed a significant data breach affecting more than 53,000 current and former employees, following a targeted cyber-attack that was first discovered in November 2023. The breach, initially believed to involve only corporate information, was found to include personal data, according to a detailed investigation involving third-party cyber forensics experts and...

Banco Santander S.A., one of the world's largest financial organizations, has reported a data security incident compromising sensitive personal information of all its employees and some customers in Europe. The breach involved unauthorized access to a database hosted by a third-party provider. In its recent announcement, Santander confirmed that the breach affected customers from Santander...

On May 14, 2024, Alexion Pharmaceuticals disclosed a data breach involving its vendor Cisiv, Ltd., affecting sensitive information of individuals who participated in surveys regarding Alexion’s products. The breach was reported to the Attorney General of Vermont, detailing that the compromised data includes names, addresses, email addresses, phone numbers, and survey responses. The security incident...

On May 20, 2024, El Centro Del Barrio, operating as CentroMed, reported a significant data breach to the Texas Attorney General, revealing that an unauthorized party accessed the confidential information of approximately 400,000 current and former patients. The compromised data includes names, addresses, dates of birth, Social Security numbers, financial account information, medical records...

Christie’s, one of the world’s leading art auction houses, experienced a cyberattack last week that took its website offline, though it did not disrupt scheduled auctions. The incident occurred during a peak auction week, forcing the company to shift all bidding to in-person and phone methods. Despite the digital setback, auctions featuring an estimated...

Australian e-prescription provider MediSecure has reported a data security incident that has compromised personal and health information of numerous individuals, forcing the company to take its official website offline. The breach is believed to have originated from one of MediSecure's third-party service providers. In a cyber security notice, MediSecure announced that it has launched an...