Security Firm Aura Discloses Data Breach Impacting 900,000 Records

Summary

Online safety platform Aura disclosed a data breach affecting approximately 900,000 records after an employee fell victim to a targeted phone phishing attack. The attacker gained access to a marketing tool for about an hour, compromising names, email addresses, and phone numbers of current and former customers, though sensitive data like SSNs and financial information were protected by encryption.

Full text

Online safety platform Aura has disclosed a data breach resulting from a phone phishing attack targeting one of its employees. The phishing attack, the company says, provided the attackers with access to the employee’s account for approximately an hour. “Upon discovery, Aura immediately terminated access to the account and activated its incident response plan, engaged external cybersecurity and legal experts, and notified law enforcement,” the company said in an incident notice. The attackers, it says, accessed roughly 900,000 records, most of which represent names and email addresses stored in a marketing tool “used by a company Aura acquired in 2021”. The compromised information, the company says, includes the names, email addresses, addresses, and phone numbers of roughly 20,000 current and approximately 15,000 former customers. “No Social Security numbers, passwords, or financial information were compromised,” Aura’s notice reads.Advertisement. Scroll to continue reading. Sensitive customer information, the company explains, is stored encrypted, and access to it is highly restricted. “Aura’s systems have been purpose-built to limit the potential exposure of customer information in the event of a breach, including organizational, technical, and physical safeguards that worked as designed in this incident,” the notice reads. Aura has started notifying the impacted customers and will provide them with the necessary support, but claims these individuals are not exposed to “significantly elevated” risk. The company did not say when the attack occurred or who might be responsible for it. SecurityWeek has emailed Aura for additional information on the matter and will update this article if the company responds. Based in Burlington, MA, Aura provides consumer cybersecurity solutions such as identity theft protection, fraud protection, and network and device protection. Related: Robotic Surgery Giant Intuitive Discloses Cyberattack Related: Security Firm Executive Targeted in Sophisticated Phishing Attack Related: Loblaw Data Breach Impacts Customer Information Related: Starbucks Data Breach Impacts Employees Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware VendorsEU Sanctions Chinese, Iranian Firms Supporting Hacking OperationsManifold Raises $8 Million for AI Detection and ResponseApple Debuts Background Security Improvements With Fresh WebKit PatchesTech Giants Invest $12.5 Million in Open Source SecurityRobotic Surgery Giant Intuitive Discloses Cyberattack174 Vulnerabilities Targeted by RondoDox BotnetTracebit Raises $20M for Cloud-Native Deception Technology Latest News Hacker Conversations: Ben Harris, From Unintentional Young Hacker to Intentional Adult CEORussian APT Exploits Zimbra Vulnerability Against UkraineRaven Emerges From Stealth With $20 Million in FundingCISA Warns of Attacks Exploiting Recent SharePoint VulnerabilityCisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware AttacksThe Collapse of Predictive Security in the Age of Machine-Speed AttacksAutonomous Offensive Security Firm XBOW Raises $120M at $1B+ ValuationCloud Security Startup Native Exits Stealth With $42 Million in Funding Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Securing Fragile OT in an Exposed World March 10, 2026 Get a candid look at the current OT threat landscape as we move past "doom and gloom" to discuss the mechanics of modern OT exposure. Register Webinar: Why Automated Pentesting Alone Is Not Enough April 7, 2026 Join our live diagnostic session to expose hidden coverage gaps and shift from flawed tool-level evaluations to a comprehensive, program-level validation discipline. Register People on the MoveSecurityBridge has promoted Holger Hügel to Chief Technology Officer.Armis has appointed Simon Mouyal as Chief Marketing Officer.Omada has named Jakob H. Kraglund as Chief Executive Officer.More People On The MoveExpert Insights The Human IOC: Why Security Professionals Struggle with Social Vetting Applying SOC-level rigor to the rumors, politics, and 'human intel' can make or break a security team. (Joshua Goldfarb) How to 10x Your Vulnerability Management Program in the Agentic Era The evolution of vulnerability management in the agentic era is characterized by continuous telemetry, contextual prioritization and the ultimate goal of agentic remediation. (Nadir Izrael) SIM Swaps Expose a Critical Flaw in Identity Security SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. (Torsten George) Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Flipboard Reddit Whatsapp Whatsapp Email

Indicators of Compromise

• malware — Phone phishing attack