Privacy

Perumda Tirta Musi Palembang utility database with 437K+ customer records allegedly for sale.

Belgian DPA fines tech company €176,946.61 for unlawfully retaining contractor's email account after departure.

1VPNS VPN service website seized by joint international law enforcement action.

Uruguay DNIC citizen database with 5.8M records allegedly leaked on underground forum

Uruguay's DNIC citizen database with 5.8M records allegedly leaked online.

Multiple US healthcare organizations report data breaches affecting millions, tracked by HHS.

Scammers mail fake Ledger phishing letters with QR codes to steal crypto wallet seed phrases from Italian users.

Brazilian identity verification provider Nuvidio allegedly breached; 40K files with KYC, biometrics, private keys

Threat actor advertises 50K+ leaked Burkina Faso passports and national ID cards online.

50,000+ scanned Burkina Faso passport and ID records allegedly leaked online.

Xacria XNO telecom platform allegedly breached; 446 service orders and Italian subscriber PII exposed.

Iraqi Ministry of Interior breached; 2025-2026 census and civil registry data exposed for sale.

Italian traffic enforcement vendor KRIA allegedly breached; 2.03 GB of speed and red-light camera data exposed

Thmanyah Saudi podcast platform breached; 107K emails and Bitmovin license key exposed.

École Française de Comptabilité suffers alleged breach exposing 41 GB of student, teacher, and bank documents.

McKissock and Colibri Real Estate breach exposes 3.4M customer records with extortion threat.

Underground ecosystem sells iPhone unlocking tools and phishing kits to criminals targeting stolen devices.

German national indicted for laundering $2M+ from defunct Dream Market darknet marketplace.

DHIS2 instances across 30+ countries allegedly breached; threat actor sharing access to national health systems.

SIVVI fashion e-commerce platform's 300,000 UAE customer records reposted for sale by threat actor.

Threat actor claims breach of Vietnamese Ministry of Health exposing 480,000 medical staff records.

Vietnam's Ministry of Health allegedly breached, exposing 480,000 medical staff records.

Akitatek French IT services firm breached; 5,400 customer records leaked by ChimeraZ.

Consorcio Credicard allegedly breached; 5M+ Venezuelan credit card records exposed.

Hackers breached telehealth platform OpenLoop Health in January, exfiltrating data on 716,000 users.

Austrian court upholds DPA order requiring ORF to redesign cookie banner for equal consent options.

French Supreme Administrative Court strikes down ARCOM copyright enforcement decree for lacking GDPR safeguards on

Austrian court upholds DPA order requiring ORF to redesign cookie banner with equivalent consent options.

Google launches Intrusion Logging in Android 16 for forensic analysis of sophisticated spyware attacks.

OHNO crypto trading platform allegedly breached, exposing Telegram IDs, wallets, and private keys.

Signal adds in-app warnings to combat phishing and social engineering via linked device abuse.

FutureShop Egypt breached via unauthenticated API exposure, leaking 3,893 customer profiles and 5,181 orders.

Threat actor selling 988.7 GB collection of stealer logs with credentials.

Kuwait's Public Authority for Civil Information breached, exposing 5.23M citizen records and sensitive government

Kuwait's Public Authority for Civil Information breached, exposing 5.23M citizen records.

Škoda Auto discloses data breach after attackers exploited unspecified vulnerability in German online shop.

Google launches Intrusion Logging feature for Android to aid forensic detection of spyware attacks.

Android 17 introduces banking scam call detection, device theft protection, and expanded threat detection features.

SIVVI fashion e-commerce platform allegedly breached, exposing ~300K customer records.

Austrian court upholds DPA order requiring ORF to redesign cookie banner with balanced consent options.

MBet Brazilian betting platform allegedly breached exposing 200K+ KYC docs and 300K+ PII records

Netherlands DPA finds GDPR violations in data transfers to Russia via inadequate safeguards

German appeals court partially upholds GDPR data subject rights against social media company tracking via third-party

Dutch DPA fines Yango €100M for unlawful data transfers to Russia without safeguards.

Instructure pays ransom to ShinyHunters to prevent leak of 3.65TB Canvas data from 9,000 organizations.

Apple iOS 26.5 enables end-to-end encrypted RCS messaging by default across iPhone and Android devices.

Indonesian Ministry of Health data breach exposes 20 million antigen test records.

GM settles $12.75M California CCPA violation over illegal sale of drivers' location and behavior data.

KAMS PARIS niche perfumery breach exposes 187,927 customer records on dark web.

Emergia Contact Center breached, 12 TB of data exposed affecting Colombian/Spanish BPO and 75 clients.