Schneier on Security

OCTOBER 26, 2022

After suffering two large, and embarrassing, data breaches in recent weeks, the Australian government increased the fine for serious data breaches from $2.2 The problem is one of incentives, and Australia has now increased the incentive for companies to secure the personal data or their users and customers.

Data breaches 296

Data breaches Government 296

Troy Hunt

APRIL 10, 2022

In my ongoing bid to make more useful information on data breaches available to impacted national governments , today I'm very happy to welcome the 32nd national CERT to Have I Been Pwned, the Republic of North Macedonia!

Government 346

Government Data breaches 346

Troy Hunt

SEPTEMBER 27, 2024

As it relates to the UK GDPR, there are two essential concepts to understand, and they're the first two bulleted items in their personal data breaches guide : The UK GDPR introduces a duty on all organisations to report certain personal data breaches to the relevant supervisory authority.

Data breaches 319

Data breaches Risk Passwords Government 319

Troy Hunt

MAY 24, 2021

Today I'm very happy to welcome the first Caribbean government to Have I Been Pwned, Trinidad & Tobago. As of today, the Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) has full and free access to query their government domains and gain visibility into where they've impacted by data breaches.

Government 362

Government Data breaches 362

Malwarebytes

JANUARY 27, 2025

UnitedHealth says it now estimates that the data breach on its subsidiary Change Healthcare affected 190 million people, nearly doubling its previous estimate from October. According to BleepingComputer , the original attackers joined forces with RansomHub and never deleted the data. Check the vendors advice.

Data breaches 122

Data breaches Healthcare Passwords Insurance 122

Troy Hunt

APRIL 12, 2021

This post has been brewing for a while, but the catalyst finally came after someone (I'll refer to him as Jimmy) recently emailed me regarding the LOQBOX data breach from 2020. A data breach made you sad and now you want money for being sad? If he's received more spam as a result of a breach, which breach was it?

Data breaches 359

Data breaches Phishing Scams Advertising 359

Troy Hunt

JUNE 28, 2021

Today I'm very happy to welcome the 23rd national government to Have I Been Pwned, the Slovak Republic. has full and free access to query all their government domains via an API that returns all their email addresses impacted by each data breach in HIBP. As of now, CSIRT.sk

Government 358

Government Data breaches 358

Troy Hunt

JUNE 7, 2021

This week as part of the ongoing initiative to make breach data available to national governments, I'm very happy to welcome the national CERT of Uruguay, CERTuy. They are now the 2nd Latin American country and 20th country worldwide to have free and easy API level access to all their government domains.

Government 344

Government Data breaches 344

Troy Hunt

JUNE 3, 2021

Supporting national CERTs with free API domain searches across their assets is becoming an increasing focus for Have I Been Pwned and today I'm happy to welcome the 19th government on board, Belgium.

Government 352

Government Data breaches 352

Troy Hunt

MARCH 6, 2024

Back in 2018, we started making Have I Been Pwned domain searches freely available to national government cybersecurity agencies responsible for protecting their nations' online infrastructure. This access now provides them with complete access to the exposure of their government domains in data breaches.

Government 323

Government Data breaches Cybersecurity 323

Troy Hunt

SEPTEMBER 6, 2021

For the last few years, I've been welcome national governments to Have I Been Pwned (HIBP) and granting them full and free access to domain-level searches via a dedicated API. Data breaches impact all of us in one way or another, and government agencies are no exception.

Government 353

Government Data breaches Internet Internet 353

Troy Hunt

APRIL 7, 2022

Supporting national governments has been a major cornerstone of Have I Been Pwned for the last 4 years. Today, I'm very happy to welcome the 31st government on board, Serbia! The National CERT and the Gov-CERT of the Republic of Serbia now has free and complete access to query their government domains via API.

Government 333

Government Data breaches 333

SecureWorld News

NOVEMBER 13, 2024

On Monday, November 11, Amazon confirmed a data breach that impacted its employee data. The breach, linked to the infamous MOVEit Transfer vulnerability, underscores the far-reaching consequences of last year's major supply chain attack. Oil behemoth Shell was among those affected , for instance.

Data breaches 116

Data breaches Identity Theft Education Software 116

Schneier on Security

APRIL 8, 2025

Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. government’s investigation is in its early stages. CNN and The Washington Post also confirmed the intrusions and that the U.S.

Telecommunications 204

Telecommunications Internet Internet Government 204

Troy Hunt

JULY 4, 2022

Continuing the rollout of Have I Been Pwned (HIBP) to national governments around the world, today I'm very happy to welcome Poland to the service! The Polish CSIRT GOV is now the 34th onboard the service and has free and open access to APIs allowing them to query their government domains.

Government 295

Government Data breaches 295

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors.

Data breaches 95

Data breaches Ransomware Cyber Attacks Manufacturing 95

Troy Hunt

MARCH 12, 2024

Over the last 6 years, we've been very happy to welcome dozens of national governments to have unhindered access to their domains in Have I Been Pwned , free from cost and manual verification barriers.

Government 288

Government InfoSec Data breaches 288

Lohrman on Security

SEPTEMBER 3, 2023

Reports from cybersecurity companies in 2023 show mixed trends regarding the number of global data breaches, ransomware attacks, records affected and government costs. But one thing is clear: Cyber attack impacts steadily grow.

Data breaches 237

Data breaches Ransomware Cyber Attacks Government 237

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 277

Data breaches Government InfoSec Passwords 277

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. The authorities launched an investigation after the ransomware gang Ransomhub claimed the attack and published samples of personal information from a database of government.

Government 144

Government Hacking Ransomware Insurance 144

Troy Hunt

NOVEMBER 22, 2022

link] — Troy Hunt (@troyhunt) November 15, 2022 I've had various public users of HIBP, commercial users and even governments reach out to ask what's going on because they were concerned about their data. With the exception of a few outdated fields, the data on my family member is correct.

Data breaches 309

Data breaches Data privacy Hacking InfoSec 309

Troy Hunt

MARCH 21, 2022

For the last 4 years, I've been providing API-level access to national government agencies so that they can search and monitor their government domains on Have I Been Pwned. Today, I'm very happy to welcome the 29th government to join the service, Italy!

Government 246

Government Data breaches Cybersecurity 246

Security Affairs

JANUARY 3, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach) Emergency care and patient admissions remained unaffected during the incident. RUMC offered 12 months of free credit monitoring to those individuals with compromised Social Security numbers.

Data breaches 75

Data breaches Ransomware Insurance Healthcare 75

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce.

Data breaches 80

Data breaches Computers and Electronics Hacking Wireless 80

Krebs on Security

AUGUST 16, 2021

Special Operations Command (PDF), demanding that the government turn over information collected about him and seeking restitution for his alleged kidnapping at the hands of the CIA. Since then, Binns has filed a flood of lawsuits naming various federal agencies — including the FBI , the CIA , and the U.S.

Mobile 340

Mobile Data breaches Accountability Wireless 340

Security Boulevard

MARCH 3, 2025

February 2025 saw a series of high-impact data breaches affecting industries ranging from healthcare and finance to cloud services and government agencies. These incidents exposed sensitive data, disrupted operations, and. The post Top Data Breaches of February 2025 appeared first on Strobes Security.

Data breaches 75

Data breaches Healthcare Government 75

Tech Republic Security

AUGUST 6, 2024

IBM’s recent Cost of a Data Breach report found that the average cost of a data breach in Australia reached a record-high in 2024. Explore additional key findings and how the Australian government is mitigating these threats.

Data breaches 172

Data breaches Government Artificial Intelligence Cybersecurity 172

Krebs on Security

OCTOBER 30, 2024

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. which suffered a data breach in 2015 affecting 78.8

Healthcare 297

Healthcare Insurance Computers and Electronics Data breaches 297

Security Affairs

SEPTEMBER 12, 2024

Fortinet disclosed a data breach after a threat actor claimed the theft of 440GB of files from the company’s Microsoft Sharepoint server. Last month, the Australian Home Affairs department discovered the data breach involving Fortinet, although it occurred earlier. the spokesman added.

Data breaches 140

Data breaches Cybersecurity Cybercrime Hacking 140

Security Affairs

DECEMBER 17, 2024

Texas Tech University reports a data breach affecting 1.4 million, exposing personal, health, and financial data from its health sciences centers. Texas Tech University disclosed a data breach that impacted over 1.4 million individuals following a cyber attack.

Data breaches 59

Data breaches Insurance Ransomware Cyber Attacks 59

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Mobile 113

Mobile Telecommunications Data breaches Hacking 113

Security Affairs

APRIL 26, 2024

Media reported [ 1 , 2 ] that the company is notifying millions of current and former members of a data breach. Exposed data does not include usernames, passwords, Social Security Numbers (SSNs), and financial data. The exposed data included names, medical records, dates of service, and lab test results.

Data breaches 138

Data breaches Healthcare Advertising Mobile 138

Security Affairs

APRIL 8, 2024

Greylock McKinnon Associates, a service provider for the Department of Justice, suffered a data breach that exposed data of 341650 people. GMA disclosed a data breach that impacted medicare and other information belonging to 5465 people. ” reads the data breach notification.

Data breaches 138

Data breaches Identity Theft Insurance Hacking 138

The Last Watchdog

OCTOBER 10, 2024

This announcement comes at a time when adversaries are increasingly using stolen identity data to bypass security measures and exploit exposed access. This is evidenced by large-scale infostealer malware campaigns and headline-grabbing breaches, such as the National Public Data breach , which leaked 2.7

Risk 286

Risk Cybercrime Identity Theft Phishing 286

Security Affairs

OCTOBER 8, 2024

MoneyGram disclosed a data breach following a cyberattack in September, during which threat actors stole customer data. MoneyGram now confirmed that the cyberattack exposed customer data, including contact info (such as phone numbers, email and postal addresses), government IDs, Social Security numbers, and transaction details.

Data breaches 125

Data breaches Government Banking Hacking 125

Tech Republic Security

MAY 24, 2024

A leading cyber lawyer in Australia has warned CISOs and other IT leaders their organisations and careers could be at stake if they do not understand data risk and data governance practices.

CISO 180

CISO Data breaches Risk Government 180

Security Affairs

AUGUST 14, 2024

Kootenai Health suffered a data breach impacting over 464,000 patients following a 3AM ransomware attack. Kootenai Health disclosed a data breach impacting over 464,088 patients following the leak of their personal information by the ThreeAM (3AM) ransomware gang. ” reads the data breach notification letter.

Data breaches 128

Data breaches Identity Theft Encryption Ransomware 128