In-depth coverage of the latest Data Breaches developments, trends, and analysis — curated daily.
A months-long breach at NYC Health + Hospitals has compromised the data of 1.8 million people, exposing everything from medical histories to biometric identifiers.
A significant data breach at Instructure, the company behind Canvas, highlights ongoing cybersecurity risks. Meanwhile, new AI vulnerabilities expose users to data exfiltration and command injection.
Millions of students' data are in jeopardy as the US House Committee on Homeland Security launches an investigation into Instructure's Canvas platform. Two successive cyberattacks by the ShinyHunters group have triggered a high-stakes congressional inquiry.
The open-source world just got a stark reminder of its interconnected fragility. Grafana Labs confirmed a recent code breach stemmed directly from a compromise within the TanStack development ecosystem.
A seemingly innocuous VS Code extension became the gateway for a devastating breach at GitHub, exposing thousands of internal repositories. This isn't just another headline; it's a wake-up call for the entire software supply chain.
GitHub is grappling with a significant breach stemming from a compromised Visual Studio Code extension. The incident highlights the escalating risks within the developer tooling supply chain.
GitHub's internal source code is reportedly up for grabs on the dark web, and the company's scrambling to figure out what happened. This latest incident highlights the ever-present danger lurking in the supply chain.
A months-long breach at NYC Health + Hospitals has compromised the data of 1.8 million people, exposing everything from medical histories to biometric identifiers.
Grafana's source code is gone. A stolen GitHub token opened the door for hackers, but thankfully, customer data seems to be safe. The company's response? No ransom.
A significant data breach affecting over 664,000 customers and employees has resulted in a substantial fine for a UK water supplier. The incident highlights persistent vulnerabilities in critical infrastructure.
A significant data breach at Instructure, the company behind Canvas, highlights ongoing cybersecurity risks. Meanwhile, new AI vulnerabilities expose users to data exfiltration and command injection.
Grafana's source code was downloaded by attackers who then demanded a ransom. The incident highlights a growing trend in data extortion, impacting software development pipelines.
A catastrophic lapse in cybersecurity hygiene — a forgotten Microsoft Teams recording — has landed two brothers in hot water. Their vengeful digital rampage was inadvertently documented, painting a clear picture for prosecutors.
Millions of students' data are in jeopardy as the US House Committee on Homeland Security launches an investigation into Instructure's Canvas platform. Two successive cyberattacks by the ShinyHunters group have triggered a high-stakes congressional inquiry.
Everyone expected Instructure, the folks behind Canvas, to either fight the hackers or admit defeat. Instead, they did something far more controversial: they paid. And that changes everything.