Data breach stories - Page 10

Experts urge firms to strengthen data resilience as AI adoption rises, warning of increased risks to backups amid complex digital environments.

Ingram Micro suffered a ransomware attack via a third-party VPN, underscoring the risks posed by remote access and external supplier vulnerabilities.

Qantas's robust data management at least identified a recent breach via a third party, protecting sensitive customer information amid rising cyber threats.

Ransomware attacks via phishing have surged 57.7%, with damages expected to hit $275 billion by 2031, urging firms to bolster human defences now.

A significant cyber-attack on Qantas exposed personal data, highlighting a rising wave of airline breaches by the financially motivated hacker group Scattered Spider.

Verax AI launches Verax Protect globally to help firms prevent AI-driven data leaks, enhancing security and compliance amid rising AI adoption in businesses.

A SecurityScorecard survey reveals 88% of cybersecurity leaders worry about supply chain risks, yet most firms lack effective active defence measures.

Barracuda Networks launches Managed Vulnerability Security to enhance cyber defence, offering end-to-end scanning and expert-led remediation across IT environments.

A massive data breach exposing 16 billion credentials from major firms and government services signals severe global digital security flaws.

Outpost24 reveals seven common OAuth risks and offers best practices to help organisations prevent unauthorised access and data breaches through better token security.

Over a third of top global healthcare providers lack full email security, leaving systems vulnerable to phishing and risking patient safety and data breaches.

Myriad360 and Cyera have launched the AI-powered Data Security Health Assessment to enhance data security and compliance in AWS environments.

Wasabi Technologies has earned ISO/IEC 27001 certification, reinforcing its commitment to top-tier cloud data security and regulatory compliance globally.

Phishing-as-a-Service, powering 60-70% of attacks, is lowering barriers in cybercrime, letting novices launch large-scale scams in 2025.

Over 80,000 Microsoft Entra ID accounts have been targeted in the UNK_SneakyStrike takeover campaign exploiting the TeamFiltration penetration testing tool.

Semperis enhances its Directory Services Protector to detect BadSuccessor attacks exploiting dMSAs in Windows Server 2025, before any official patch is available.

Bitdefender launches GravityZone Compliance Manager to simplify regulatory compliance with real-time monitoring, automated reports, and streamlined audit readiness.

Rapid7's Q1 2025 report reveals stolen credentials without MFA cause 56% of breaches, while manufacturing faces the highest threat from ransomware attacks.

Russian Market remains pivotal in cyber credential theft, with over 136,000 alerts in 2024 for stolen credentials sold at just USD $2 each.

Experts warn of a rise in Chrome extension attacks and a breach exposing 184 million stolen log-ins, highlighting urgent cybersecurity risks worldwide.