Security Insights

Between October 16 and October 17, a significant data leak at Georgetown University exposed confidential student and applicant information dating back to 1990. The data breach, caused by an internal misconfiguration during system maintenance, allowed a subset of Georgetown University ID holders to access sensitive information through Ellucian, Georgetown’s data management system. This information included […]

On October 14, 2024, the Texas Department of Public Safety (DPS) disclosed a significant data breach that exposed the personal information of more than 115,000 Texans. The breach leaked sensitive data, including names, addresses, Social Security numbers, birth dates, medical information, government-issued ID numbers, and driver’s license numbers. The Texas Attorney General’s office confirmed the […]

On October 5, 2024, Japanese electronics giant Casio revealed that it had suffered a devastating cyberattack, leading to a data breach. Casio confirmed that the attack was orchestrated by the notorious ransomware group known as “Underground.” The hackers reportedly gained unauthorized access to the company’s network, causing system failures and service disruptions. Casio’s initial investigation […]

A post on BreachForum by the notorious hacker known as IntelBroker has raised serious concerns regarding a data breach involving Cisco. The hacker claims to possess a significant amount of sensitive information allegedly taken from Cisco customers during a breach in June 2024. IntelBroker, along with two associates known as “EnergyWeaponUser” and “zjj,” is reportedly […]

On October 7, 2024, Dohman, Akerlund & Eddy, LLC (DA&E) announced a significant data breach that exposed sensitive client information. The breach, first detected on February 28, 2024, involved an unauthorized actor gaining access to the accounting firm’s IT network and exfiltrating confidential files. The company later confirmed the breach, and on October 7, they […]

In a worrying turn of events, home and business security giant ADT has suffered its second data breach in just two months. The latest breach, disclosed through a Monday evening SEC filing, reveals that hackers gained unauthorized access to ADT’s systems by using stolen credentials from a third-party business partner. Although no customer data was […]

Game Freak, the developer behind the Pokémon franchise, recently confirmed a significant data breach in August 2024. Hackers gained illegal access to the company’s servers, exposing personal information of 2,606 current, former, and contract employees, including names and email addresses. While the company issued an apology and claimed the vulnerability has since been fixed, the […]

In a chilling reminder of how even the largest financial institutions are vulnerable, Fidelity Investments recently suffered a major data breach, compromising personal information of 77,099 customers. Between August 17 and 19, 2024, a third-party attacker gained unauthorized access to Fidelity’s systems, exposing sensitive customer details. Although Fidelity reassured customers that their funds were not […]

The Internet Archive, known for its free access to vast digitized materials like books, music, and web pages through the Wayback Machine, has experienced a severe data breach. This breach exposed email addresses, screen names, and bcrypt password hashes of 31 million users. Adding insult to injury, a coordinated DDoS attack further crippled the website, […]

Marriott International, Inc. has reached a staggering $52 million settlement following a massive data breach that exposed the personal information of over 131 million guests. The breach, which persisted for four years—from 2014 until 2018—targeted the Starwood hotel system, a network acquired by Marriott in 2016. Despite knowledge of vulnerabilities, Marriott allowed the breach to […]