News

A threat actor is claiming to sell a 1.3TB Eurail dataset while Eurail has publicly confirmed that some customer data from its January 2026 security incident is being offered for sale and that a sample has appeared on Telegram. What Happened in the Breach Eurail B.V. said a security breach led to unauthorized access to…

What Happened in the Breach Volvo Group North America reported that a third party breach at Conduent exposed personal data tied to nearly 17,000 Volvo employees and customers, after Conduent’s systems were accessed from Oct 21, 2024 to Jan 13, 2025. Stolen files included names, addresses, Social Security numbers, dates of birth, health insurance details,…

Coinbase confirmed that a single contractor improperly accessed customer information inside its support tooling, affecting about 30 customers, after screenshots of an internal support interface briefly appeared on Telegram and were then removed. What Happened in the Breach Coinbase told BleepingComputer that its security team found improper access from one contractor last year and that…

What Happened in the Breach Cybersecurity researchers from the Cybernews investigative team uncovered an unprotected MongoDB instance on November 11, 2025 that they traced to US based identity verification firm IDMerit. The exposed server, used to store know your customer KYC data, held multiple databases totaling more than 3 billion records and nearly 1 terabyte…

Credit and debit card payments for Denton’s online utility bills went offline after Feb. 6, 2026, when BridgePay, a third-party card-processing vendor used for those transactions, reported a cybersecurity incident and later confirmed ransomware. What Happened in the Breach Residents in Denton, Texas lost the ability to pay utility bills online with credit or debit…

What Happened in the Breach Japan’s Washington Hotel group, part of the Fujita Kanko hospitality company, disclosed that it had suffered a ransomware attack on February 13 2026. In a statement on its Japanese-language corporate site, the company said it detected unauthorized access to several servers at 22:00 local time and identified malware consistent with…

What Happened in the Breach Odido disclosed on February 12, 2026 that cybercriminals accessed a customer contact system used for customer communications and that the incident involved personal data, not telecom service operations. The company said the exposed information can include names, contact details, bank account numbers, dates of birth, and government ID document details…

What Happened in the Breach Canadian electronics retailer Canada Computers & Electronics disclosed that 1,284 customers who used its website’s guest checkout had their personal data exposed. The company said that it learned on January 22, 2026 that an unauthorized party had accessed a system supporting its retail website.  An internal investigation determined that the…

What Happened in the Breach A major data leak involving the Adidas Extranet exposed approximately 815,000 rows of information after cybercriminals accessed a third‑party service used by the sportswear giant. Security outlets reported that the stolen dataset contained first and last names, email addresses, passwords, birthdays and company names.  The extranet is a restricted portal…

What Happened in the Breach Panera Bread told Reuters that an incident occurred and that authorities were notified, and it described the exposed data as customer “contact information.” The extortion group ShinyHunters claimed it stole a much larger dataset and threatened publication, then released data after the extortion attempt failed, according to multiple security and…