Troy Hunt

SEPTEMBER 27, 2024

As it relates to the UK GDPR, there are two essential concepts to understand, and they're the first two bulleted items in their personal data breaches guide : The UK GDPR introduces a duty on all organisations to report certain personal data breaches to the relevant supervisory authority.

Data breaches 334

Data breaches Risk Passwords Government 334

Troy Hunt

AUGUST 9, 2021

They are now the 26th government to have complete and free API level access to query their government domains. Providing governments with greater visibility into the impact of data breaches on their staff helps protect against all manner of online attacks.

Government 363

Government Data breaches 363

Troy Hunt

JUNE 14, 2021

Today I'm very happy to welcome the Finnish government to Have I Been Pwned by granting their National Cyber Security Centre full and free access to query their government domains. API access to query their domains will give them greater visibility into the impact of data breaches on the Finnish government.

Government 363

Government Data breaches 363

Security Affairs

JANUARY 11, 2025

US marijuana dispensary STIIIZY warns customers of leaked IDs and passports following a November data breach. US marijuana dispensary STIIIZY disclosed a data breach after a vendor’s point-of-sale system was compromised by cybercriminals.

Data breaches 111

Data breaches Retail Cybercrime Government 111

Troy Hunt

APRIL 29, 2021

Today I'm very happy to announce the arrival of the 15th government to Have I Been Pwned, Romania. As of now, CERT-RO has access to query all Romanian government domains across HIBP and subscribe them for future notifications when subsequent data breaches affect aliases on those domains.

Government 363

Government Data breaches 363

Troy Hunt

MAY 18, 2021

Today I'm very happy to welcome the 16th government to Have I Been Pwned, Sweden. The Swedish National Computer Security Incident Response Team CERT-SE now has full and free access to query all government domains via HIBP's API and gain insights into the impact of data breaches on their government departments.

Government 363

Government Data breaches 363

Troy Hunt

MARCH 6, 2024

Back in 2018, we started making Have I Been Pwned domain searches freely available to national government cybersecurity agencies responsible for protecting their nations' online infrastructure. This access now provides them with complete access to the exposure of their government domains in data breaches.

Government 344

Government Data breaches Cybersecurity 344

Troy Hunt

JUNE 7, 2021

This week as part of the ongoing initiative to make breach data available to national governments, I'm very happy to welcome the national CERT of Uruguay, CERTuy. They are now the 2nd Latin American country and 20th country worldwide to have free and easy API level access to all their government domains.

Government 359

Government Data breaches 359

Troy Hunt

MAY 24, 2021

Today I'm very happy to welcome the first Caribbean government to Have I Been Pwned, Trinidad & Tobago. As of today, the Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) has full and free access to query their government domains and gain visibility into where they've impacted by data breaches.

Government 363

Government Data breaches 363

Troy Hunt

JUNE 3, 2021

Supporting national CERTs with free API domain searches across their assets is becoming an increasing focus for Have I Been Pwned and today I'm happy to welcome the 19th government on board, Belgium.

Government 362

Government Data breaches 362

Troy Hunt

JUNE 28, 2021

Today I'm very happy to welcome the 23rd national government to Have I Been Pwned, the Slovak Republic. has full and free access to query all their government domains via an API that returns all their email addresses impacted by each data breach in HIBP. As of now, CSIRT.sk

Government 359

Government Data breaches 359

Troy Hunt

SEPTEMBER 6, 2021

For the last few years, I've been welcome national governments to Have I Been Pwned (HIBP) and granting them full and free access to domain-level searches via a dedicated API. Data breaches impact all of us in one way or another, and government agencies are no exception.

Government 362

Government Data breaches Internet Internet 362

Troy Hunt

APRIL 7, 2022

Supporting national governments has been a major cornerstone of Have I Been Pwned for the last 4 years. Today, I'm very happy to welcome the 31st government on board, Serbia! The National CERT and the Gov-CERT of the Republic of Serbia now has free and complete access to query their government domains via API.

Government 341

Government Data breaches 341

SecureWorld News

NOVEMBER 13, 2024

On Monday, November 11, Amazon confirmed a data breach that impacted its employee data. The breach, linked to the infamous MOVEit Transfer vulnerability, underscores the far-reaching consequences of last year's major supply chain attack. Oil behemoth Shell was among those affected , for instance.

Data breaches 117

Data breaches Identity Theft Education Software 117

Schneier on Security

APRIL 8, 2025

Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. government’s investigation is in its early stages. CNN and The Washington Post also confirmed the intrusions and that the U.S.

Telecommunications 255

Telecommunications Internet Internet Government 255

Malwarebytes

APRIL 15, 2025

The Hertz Corporation, on behalf of Hertz, Dollar, and Thrifty brands, is sending breach notifications to customers who may have had their name, contact information, driver’s license, andin rare casesSocial Security Number exposed in a data breach. Check the vendors advice.

Data breaches 113

Data breaches Ransomware Passwords B2B 113

Troy Hunt

JULY 4, 2022

Continuing the rollout of Have I Been Pwned (HIBP) to national governments around the world, today I'm very happy to welcome Poland to the service! The Polish CSIRT GOV is now the 34th onboard the service and has free and open access to APIs allowing them to query their government domains.

Government 317

Government Data breaches 317

Troy Hunt

MARCH 12, 2024

Over the last 6 years, we've been very happy to welcome dozens of national governments to have unhindered access to their domains in Have I Been Pwned , free from cost and manual verification barriers.

Government 310

Government InfoSec Data breaches 310

Security Affairs

MAY 3, 2025

The Rhysida Ransomware gang claims the hack of the Government of Peru, the gang breached Gob.pe, the Single Digital Platform of the Peruvian State. The Rhysida ransomware gang claims responsibility for hacking the Government of Peru, breaching Gob.pe, which is the country’s official digital platform.

Government 123

Government Ransomware Hacking Manufacturing 123

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches 298

Data breaches Government InfoSec Passwords 298

Security Affairs

APRIL 11, 2025

Laboratory Services Cooperative discloses a data breach from October 2024 that exposed personal and medical info of 1.6 Laboratory Services Cooperative disclosed a data breach that impacted the personal and medical information of 1.6 ” reads the notice of data breach. million individuals.

Data breaches 95

Data breaches Insurance Banking Accountability 95

Lohrman on Security

SEPTEMBER 3, 2023

Reports from cybersecurity companies in 2023 show mixed trends regarding the number of global data breaches, ransomware attacks, records affected and government costs. But one thing is clear: Cyber attack impacts steadily grow.

Data breaches 244

Data breaches Ransomware Cyber Attacks Government 244

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. The authorities launched an investigation after the ransomware gang Ransomhub claimed the attack and published samples of personal information from a database of government.

Government 144

Government Hacking Ransomware Insurance 144

Troy Hunt

MARCH 21, 2022

For the last 4 years, I've been providing API-level access to national government agencies so that they can search and monitor their government domains on Have I Been Pwned. Today, I'm very happy to welcome the 29th government to join the service, Italy!

Government 246

Government Data breaches Cybersecurity 246

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors.

Data breaches 95

Data breaches Ransomware Cyber Attacks Manufacturing 95

Security Affairs

JANUARY 3, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach) Emergency care and patient admissions remained unaffected during the incident. RUMC offered 12 months of free credit monitoring to those individuals with compromised Social Security numbers.

Data breaches 75

Data breaches Ransomware Insurance Healthcare 75

Tech Republic Security

AUGUST 6, 2024

IBM’s recent Cost of a Data Breach report found that the average cost of a data breach in Australia reached a record-high in 2024. Explore additional key findings and how the Australian government is mitigating these threats.

Data breaches 182

Data breaches Government Artificial Intelligence Cybersecurity 182

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce.

Data breaches 80

Data breaches Computers and Electronics Hacking Wireless 80

Krebs on Security

AUGUST 16, 2021

Special Operations Command (PDF), demanding that the government turn over information collected about him and seeking restitution for his alleged kidnapping at the hands of the CIA. Since then, Binns has filed a flood of lawsuits naming various federal agencies — including the FBI , the CIA , and the U.S.

Mobile 335

Mobile Data breaches Accountability Wireless 335

Security Boulevard

MARCH 3, 2025

February 2025 saw a series of high-impact data breaches affecting industries ranging from healthcare and finance to cloud services and government agencies. These incidents exposed sensitive data, disrupted operations, and. The post Top Data Breaches of February 2025 appeared first on Strobes Security.

Data breaches 75

Data breaches Healthcare Government 75

Krebs on Security

OCTOBER 30, 2024

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. which suffered a data breach in 2015 affecting 78.8

Healthcare 294

Healthcare Insurance Computers and Electronics Data breaches 294

Webroot

APRIL 22, 2025

If a company you do business with becomes part of a data breach, cybercriminals may have full access to your confidential information. Unfortunately, data breaches are on the rise and affecting more companies and consumers than ever. billion people received notices that their information was exposed in a data breach.

Data breaches 72

Data breaches Identity Theft Passwords eCommerce 72

Security Affairs

APRIL 15, 2025

Hertz Corporation disclosed a data breach after customer data was stolen via Cleo zero-day exploits in late 2024, affecting Hertz, Thrifty, and Dollar brands. Car rental giant Hertz Corporation disclosed a data breach that impacted its Hertz, Thrifty, and Dollar brands.

Data breaches 63

Data breaches Ransomware Software Hacking 63

Security Affairs

SEPTEMBER 12, 2024

Fortinet disclosed a data breach after a threat actor claimed the theft of 440GB of files from the company’s Microsoft Sharepoint server. Last month, the Australian Home Affairs department discovered the data breach involving Fortinet, although it occurred earlier. the spokesman added.

Data breaches 140

Data breaches Cybersecurity Cybercrime Hacking 140

Security Affairs

DECEMBER 17, 2024

Texas Tech University reports a data breach affecting 1.4 million, exposing personal, health, and financial data from its health sciences centers. Texas Tech University disclosed a data breach that impacted over 1.4 million individuals following a cyber attack.

Data breaches 58

Data breaches Insurance Ransomware Cyber Attacks 58

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Mobile 112

Mobile Telecommunications Data breaches Hacking 112

Tech Republic Security

MAY 24, 2024

A leading cyber lawyer in Australia has warned CISOs and other IT leaders their organisations and careers could be at stake if they do not understand data risk and data governance practices.

CISO 190

CISO Data breaches Risk Government 190