Collaborate Disseminate
Elaine Blackburne reports: Hotel guests have been warned to stay alert for convincing fraudulent messages following a data breach at a major hotel chain. Personal information belonging to individuals with reservations at one of the chain’s proper… Continue reading UK: Hotel guests issued urgent ‘check’ alert as personal details stolen from major chain
Eric Sagonowsky reports: As cybersecurity threats have proliferated across industries in recent years, biopharma companies have emerged as prominent targets, with intellectual property, patient data and other sensitive information at stake. Now, Novo N… Continue reading Novo Nordisk reports data breach, tells clinical trial patients to ‘remain vigilant’
Bhaswati Guha Majumder reports: The cybercrime group ShinyHunters has claimed responsibility for a major breach involving the Council of Europe, threatening to publish hundreds of gigabytes of allegedly stolen data unless its demands are met by 16 June… Continue reading ShinyHunters Claims Theft of 297GB of Council of Europe Data; Claims Unconfirmed As Yet
DataBreaches has been impressed by South Korea’s response to data breaches ever since reading about how its financial regulator responded to three credit card companies whose customers suffered a major data leak. Unlike any enforcement action Dat… Continue reading South Korea Hands Coupang a Record-Breaking $409 Million Data Privacy Fine
Lawrence Abrams reports: A Ukrainian national extradited from Ireland to the United States last year has pleaded guilty to conspiracy charges tied to the Conti ransomware operation. The U.S. Department of Justice announced Thursday that 44-year-old Ole… Continue reading Ukrainian national pleads guilty to role in Conti ransomware operation
Do you remember the horrific American Medical Collection Agency (Retrieval-Masters Creditors Bureau Inc.) breach in 2019? You can refresh your memory by scrolling through the Related posts below this one, but TL;DR: LabCorp was one of AMCA’s cli… Continue reading Labcorp reaches $35M settlement over American Medical Collection Agency breach
From Mandiant and Google Threat Intelligence Group, an advisory: Mandiant and Google Threat Intelligence Group (GTIG) have identified an active compromise and extortion campaign attributed to UNC6240 (ShinyHunters) targeting Oracle PeopleSoft applicati… Continue reading ShinyHunters Targets Education Sector with Oracle PeopleSoft Exploit
The bigger they are, the harder they fail? Global Schools Foundation (GSF) is a Singapore-headquartered, not-for-profit K–12 education organization. With a global network of schools, the foundation strives to provide world-class education to students a… Continue reading After a Massive Hack, Global Schools Group’s Negotiator Acted “Bizarrely.” It Didn’t End Well for Them.
Today’s reminder of the insider threat is brought to us by DysruptionHub: A former Saydel Community School District information technology worker in Iowa was sentenced June 11 after prosecutors said he disrupted school technology systems used by … Continue reading Former Saydel schools IT worker sentenced for Iowa cyber sabotage
In July 2025, the Nova ransomware gang stole cervical cancer screening data on 850,000 women held by Clinical Diagnostics (“Eurofins”). The lab paid them an undisclosed ransom amount, but that has not been the end of the lab’s problem… Continue reading Women’s health advocacy organization prepares mass suit against Clinical Diagnostics