This page collects WhisperX intelligence signals tagged #Data Breach. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
This one is really troubling. Conduent, a massive government contractor that handles everything from benefits administration to transportation systems, just revealed that their data breach is affecting at least 25 million people - and the number keeps climbing. Let me put this in perspective. We are not talking about s...
WhisperX has uncovered evidence of a significant data breach impacting multiple Portuguese government digital service platforms, which has been largely concealed from public disclosure. The compromise, believed to have occurred several months ago, exposed sensitive personal information of citizens, including identity d...
WhisperX has obtained intelligence indicating a significant data breach affecting a major Portuguese telecommunications provider has been deliberately downplayed and concealed from the public and regulatory bodies. The breach, which occurred several months ago, involved the unauthorized access and exfiltration of sensi...
Internal communications and whistleblower accounts from within the European Commission suggest a deliberate effort to downplay or obscure the full extent of a significant personal data breach affecting a large number of EU citizens. The incident, reportedly involving sensitive information related to individuals interac...
Intelligence reports from Southeast Asia indicate that Malaysia's Personal Data Protection Act (PDPA) is facing significant challenges in the face of escalating data breaches. Recent analyses of leaked databases reveal a consistent pattern of insufficient security measures by local companies, leading to the exposure of...
A significant data breach originating from a Vietnamese IT services provider, reportedly with ties to military intelligence, has exposed the personal information of millions of citizens. The leaked dataset includes names, national ID numbers, phone numbers, and in some cases, residential addresses. Initial analysis sug...
A significant data breach affecting a major telecommunications provider in Malaysia has reportedly exposed the personal information of millions of subscribers. Leaked data, circulating on dark web forums and confirmed by cybersecurity researchers, includes names, NRIC numbers (Malaysian national identity card), address...
A massive data breach affecting a leading Indonesian fintech lending platform has reportedly compromised the personal information of an estimated 5 million users. Leaked data, circulating on dark web forums since late November 2023, includes full names, national ID numbers (NIK), addresses, phone numbers, and in some c...
A recent investigation by a consortium of German investigative journalists, corroborated by internal whistleblower accounts, has uncovered a sophisticated digital surveillance program operated by a shadowy state-affiliated entity within Germany. Codenamed 'Project Nightingale,' this tool allegedly bypasses standard enc...
A collective identifying as Department of Peace has claimed responsibility for a cyber intrusion into the United States Department of Homeland Security, resulting in the exposure of contract data involving over 6,000 companies. The leaked information, published through transparency organization DDoSecrets, includes con...
Legal and business data giant LexisNexis has officially confirmed a data breach after hackers publicly leaked files they claim were stolen from the company's systems. The confirmation comes in response to the external leak, though the company is currently downplaying the scope and impact of the incident. LexisNexis sta...
Conduent, a major national payment processing company, has confirmed a ransomware attack that resulted in a data breach. The company provides critical payment processing services for numerous state governments and health insurance companies, handling sensitive financial and potentially health-related data. The breach i...
A prolific data ransom gang calling itself Scattered Lapsus ShinyHunters (SLSH) employs a distinctive and aggressive extortion playbook. Unlike traditional, regimented ransomware groups, SLSH is an unruly, fluid English-language gang that focuses on harassing, threatening, and even swatting executives and their familie...
Data analytics giant LexisNexis has confirmed its Legal & Professional division suffered a data breach, following claims by the Fulcrumsec cybercrime crew. The breach reportedly involved customer records. The cybercriminals claim to have exfiltrated 2 GB of data from an AWS instance using a 'React2Shell' exploit. Lexis...
American analytics and data aggregation giant LexisNexis has confirmed a recent data breach. The company acknowledged that hackers accessed customer and business information. However, the hackers behind the attack claim to have achieved far deeper access to LexisNexis systems than the company has publicly admitted. Acc...
Nissan North America has agreed to a $1.5 million settlement to resolve a class action lawsuit stemming from a data breach that began around November 7, 2023. The lawsuit, Taylor et al. v. Nissan North America, alleged the company failed to protect sensitive personal information of consumers. This settlement comes as N...
The threat actor group ShinyHunters has claimed responsibility for a significant data breach at Woflow, a data management company. The breach reportedly exposed millions of records belonging to Woflow's high-profile clients, including major corporations such as DoorDash, Walmart, and Uber. According to the claims, the ...
Global paint and coatings manufacturer AkzoNobel has confirmed a data breach affecting its operations. The company, known for brands like Dulux, revealed that the incident specifically impacted its US site. Following the initial leak of information, AkzoNobel officially acknowledged the security incident and provided a...
Cybercriminals have stolen approximately 15.8 million administrative medical records after successfully breaching a software supplier contracted by France's health ministry. The attack targeted the third-party vendor, which provided services to the ministry, leading to the massive data leak. The stolen files contain se...
A critical security vulnerability has been discovered in a game server's API, exposing the complete historical dataset of player votes, scores, and session identifiers to anyone on the internet. The `/api/export/votes.csv` endpoint lacks any form of authentication, allowing uncredentialed access to download the entire ...