#DataExposure

CyberMaterial

@cybermaterial.bsky.social

1 day ago

Starbucks Reports Employee Data Breach
Read More: buff.ly/isVLZvQ

#StarbucksBreach #EmployeeData #AccountCompromise #CorporateSecurity #DataExposure #BreachDisclosure #CyberIncident #InfosecNews

CyberMaterial

@cybermaterial.bsky.social

3 days ago

Insightin Health Reports New Data Breach
Read More: buff.ly/4zeniCE

#HealthcareBreach #GoAnywhere #MedusaRansomware #PHIData #InsuranceData #DataExposure #BreachDisclosure #InfosecNews

CyberMaterial

@cybermaterial.bsky.social

4 days ago

Ericsson US Confirms Third-Party Breach
Read More: buff.ly/JUAZwD6

#Ericsson #ThirdPartyRisk #VendorBreach #DataExposure #EnterpriseSecurity #SupplyChainRisk #CyberIncident #Infosec

CyberMaterial

@cybermaterial.bsky.social

5 days ago

TriZetto Breach Hits 3.4M Patients
Read More: buff.ly/h8tEXPN

#TriZetto #HealthcareBreach #MedicalData #PHIData #DataExposure #CyberIncident #PatientPrivacy #InfosecNews

CyberMaterial

@cybermaterial.bsky.social

1 week ago

Colombia Tax Agency Breach May Expose Data
Read More: buff.ly/Ltu1ng0
#ColombiaCyber #DIAN #GovernmentBreach #DataExposure #DarkWebSale #PublicSectorCyber #CyberIncident #InfosecNews

CyberMaterial

@cybermaterial.bsky.social

2 weeks ago

UFP Technologies Confirms Data Breach
Read More: buff.ly/PRuDbmy

#UFPTechnologies #MedicalDeviceSecurity #SECfiling #CorporateBreach #DataExposure #CyberIncident #EnterpriseSecurity #InfosecNews

TechNadu

@technadu.com

3 weeks ago

PayPal disclosed a 6-month PII exposure tied to a software error in its loan app.

SSNs, DOBs & contact data exposed.
~100 users affected.

Follow TechNadu for independent cybersecurity reporting.

#CyberSecurity #DataPrivacy #Fintech #Infosec #DigitalRisk #SecurityCommunity #DataExposure

Lancaban

@theeo123.bsky.social

3 weeks ago

A Vast Trove of Exposed Social Security Numbers May Put Millions at Risk of Identity Theft A database left accessible to anyone online contained billions of records, including sensitive personal data that criminals appear to have not yet exploited.

www.wired.com/story/a-mega...

UpGuard researchers found a publicly exposed database with around 3 billion email/password pairs and 2.7 billion records with Social Security numbers.

#Cybersecurity #DataBreach #Privacy #IdentityTheft #Infosec #DataExposure #DigitalSecurity

CyberMaterial

@cybermaterial.bsky.social

1 month ago

Odido Announces Data Breach
Read More: buff.ly/cc0KoxZ

#Odido #NetherlandsCyber #TelecomBreach #CustomerData #DataExposure #BreachDisclosure #CyberIncident #InfosecNews

TechNadu

@technadu.com

1 month ago

Full details:
www.technadu.com/flickr-discl...

Do third-party vendors pose the biggest security risk today? Comment your opinion below.
#DataExposure #CyberSecurity #PrivacyMatters #ThirdPartyRisk

CyberMaterial

@cybermaterial.bsky.social

1 month ago

Mexican Government Faces Leak Allegations
Read More: buff.ly/FL0mmLy

#DataLeakClaims #MexicoCyber #Hacktivism #GovernmentData #InformationSecurity #PublicSectorCyber #DataExposure #CyberNews

TechNadu

@technadu.com

1 month ago

A researcher disclosed a publicly exposed database containing millions of stolen login credentials collected by infostealer malware.
It shows how quietly credential theft operates and how long data can remain exposed without detection.
#CyberSecurity #DataExposure #InfoSec #DigitalPrivacy #TechNadu

CyberMaterial

@cybermaterial.bsky.social

1 month ago

Hackers Steal Student Data In Victoria
Read More: buff.ly/QcF5MLz

#EdTechSecurity #StudentData #AustraliaCyber #EducationIT #PasswordReset #SchoolSecurity #PublicSectorCyber #DataExposure #CyberAwareness

TechNadu

@technadu.com

2 months ago

Pax8 confirmed an accidental email that exposed internal business & licensing data affecting MSP partners.
No personal data was involved, but the incident highlights how non-PII business data can still introduce security & trust risks in cloud ecosystems.
#CyberSecurity #CloudSecurity #DataExposure

CyberMaterial

@cybermaterial.bsky.social

2 months ago

Pax8 Exposes Data Of 1800 MSP Partners
Read More: buff.ly/KGfXtVk

#Pax8 #MSPSecurity #PartnerDataLeak #DataExposure #MicrosoftLicensing #CloudMarketplace #ThirdPartyRisk #EmailMisconfiguration #DataGovernance

@richardfreiberg.bsky.social

2 months ago

The Change Healthcare #databreach lawsuit is moving forward as Court rejected dismissal attempts signaling progress to hold them accountable for security failures. The rulings focus on alleged inadequate security, delayed notifications, & major
#dataexposure. As you recall almost 200M were impacted

CyberMaterial

@cybermaterial.bsky.social

2 months ago

Baker University Data Breach Hits 53,000
Read More: buff.ly/uiLG6zC

#BakerUniversityBreach #EducationSectorBreach #DataExposure #InfosecIncident #PrivacyRisk #BreachNotification #CyberAwareness

CySecurity News

@cysecuritynews.bsky.social

2 months ago

Neo AI Browser: How Norton’s AI-Driven Browser Aims to Change Everyday Web Use   Web browsers are increasingly evolving beyond basic internet access, and artificial intelligence is becoming a central part of that shift. Neo, an AI-powered browser developed by Norton, is designed to combine browsing, productivity tools, and security features within a single platform. The browser positions itself as a solution for users seeking efficiency, privacy control, and reduced online distractions. Unlike traditional browsers that rely heavily on cloud-based data processing, Neo stores user information directly on the device. This includes browsing history, AI interactions, and saved preferences. By keeping this data local, the browser allows users to decide what information is retained, synchronized, or removed, addressing growing concerns around data exposure and third-party access. Security is another core component of Neo’s design. The browser integrates threat protection technologies intended to identify and block phishing attempts, malicious websites, and other common online risks. These measures aim to provide a safer browsing environment, particularly for users who frequently navigate unfamiliar or high-risk websites. Neo’s artificial intelligence features are embedded directly into the browsing experience. Users can highlight text on a webpage to receive simplified explanations or short summaries, which may help when reading technical, lengthy, or complex content. The browser also includes writing assistance tools that offer real-time grammar corrections and clarity suggestions, supporting everyday tasks such as emails, reports, and online forms. Beyond text-based tools, Neo includes AI-assisted document handling and image-related features. These functions are designed to support content creation and basic processing tasks without requiring additional software. By consolidating these tools within the browser, Neo aims to reduce the need to switch between multiple applications during routine work. To improve usability, Neo features a built-in ad blocker that limits intrusive advertising. Reducing ads not only minimizes visual distractions but can also improve page loading speeds. This approach aims to provide a smoother and more focused browsing experience for both professional and casual use. Tab management is another area where Neo applies automation. Open tabs are grouped based on content type, helping users manage multiple webpages more efficiently. The browser also remembers frequently visited sites and ongoing tasks, allowing users to resume activity without manually reorganizing their workspace. Customization plays a role in Neo’s appeal. Users can adjust the browser’s appearance, create shortcuts, and modify settings to better match their workflow. Neo also supports integration with external applications, enabling notifications and tool access without leaving the browser interface. Overall, Neo reflects a broader trend toward AI-assisted browsing paired with stronger privacy controls. By combining local data storage, built-in security, productivity-focused AI tools, and performance optimization features, the browser presents an alternative approach to how users interact with the web. Whether it reshapes mainstream browsing habits remains to be seen, but it underlines how AI is steadily redefining everyday digital experiences.

Neo AI Browser: How Norton’s AI-Driven Browser Aims to Change Everyday Web Use #aibrowser #DataExposure #DigitalSecurity

CyberLens Newsletter

@cyberlensnews.bsky.social

3 months ago

Barts Health NHS Trust Breach Rocks Global Hospital Cybersecurity Assumptions How a Zero-Day in a Widely Used Business Platform Exposed Years of Patient and Staff Data

🏥The breach at Barts Health NHS Trust highlights a rising danger across global hospitals as attackers pivot toward financial & admin systems hidden behind everyday operations ⚠️.
#CyberLens #Cybersecurity #HospitalSecurity #DataExposure #DigitalRisk #HealthcareTech

thecyberlens.com/p/barts-heal...

Manuel Bissey

@mbissey.bsky.social

3 months ago

Data brokers are exposing medical professionals, and turning their personal lives into open files - Help Net Security Healthcare staff face rising data exposure as personal details appear on people search sites, increasing safety risks across medical roles.

Healthcare staff data is being exposed at alarming rates — protecting patients starts with protecting those who care for them. 🩺🔓 #HealthDataSecurity #DataExposure

TechNadu

@technadu.com

3 months ago

Code-beautifier tools were found leaking 80k+ JSON pastes containing credentials, keys, tokens, and PII through a public “Recent Links” feature. Automated scanners even hit expired uploads...

#CyberSecurity #AppSec #DataExposure #Infosec #CloudSecurity #TechNadu #ThreatIntel

CyberLens Newsletter

@cyberlensnews.bsky.social

3 months ago

The Drain of Trust in Online Tools as JSON Formatter Leaks Reveal a Massive Password Exposure Crisis How simple JSON beautifiers and code formatting websites silently harvested credentials for years and what security teams must do now

⚠️Years of quiet data capture from JSON Formatters & code beautifiers have exposed thousands of sensitive credentials. Developers & security teams should rethink the tools they rely on. 🔐
#CyberLens #Cybersecurity #DataExposure #DevSecOps #SecurityNews #OnlineSafety

thecyberlens.com/p/the-drain-...

TechNadu

@technadu.com

3 months ago

A new study shows WhatsApp’s contact-discovery tool could be automated to enumerate 3.5B phone numbers, plus public profile info. Meta has since tightened rate-limits and says no private data was exposed.

#CyberSecurity #Privacy #WhatsApp #DataExposure #DigitalSafety #TechNadu

TechNadu

@technadu.com

4 months ago

Two-Thirds of Top AI 50 Companies Leaked Sensitive Data on GitHub, Including API Keys and Tokens Forbes AI 50 companies suffer major data leaks, as a recent security investigation has uncovered significant GitHub secret exposure.

Full details: www.technadu.com/two-thirds-o...

Do you think AI innovation pressure is leading teams to overlook foundational security practices?
#Cybersecurity #GitHubLeaks #AIsecurity #WizResearch #DataExposure #ForbesAI50

DysruptionHub

@dysruptionhub.infosec.exchange.ap.brid.gy

4 months ago

South Carolina’s Dillon County probes possible hack Dillon County reported a Nov. 3 network disruption and is working with forensics and law enforcement to determine if a hack occurred.

South Carolinas Dillon County probes possible hack #DillonCounty #SouthCarolina #NetworkDisruption #ForensicInvestigation #LawEnforcement #DataExposure #Cyberattack dysruptionhub.com/dillon-county-sc-possibl...

Manuel Bissey

@mbissey.bsky.social

4 months ago

Ernst & Young Exposes 4TB SQL Server Backup Publicly on Microsoft Azure A 4TB SQL Server backup file belonging to global accounting giant Ernst & Young (EY) was discovered publicly accessible on Microsoft Azure.

Oops… Ernst & Young accidentally exposed 4TB of data on Azure — a reminder that even experts can slip when cloud hygiene falters. ☁️🧾 #CloudSecurity #DataExposure

TechNadu

@technadu.com

4 months ago

EY confirmed a 4TB SQL Server backup was exposed on Microsoft Azure - discovered by Neo Security during asset mapping.
The file likely included database dumps and credentials, though no client or personal data was affected.

#CyberSecurity #EY #DataExposure #CloudSecurity #Infosec

CySecurity News

@cysecuritynews.bsky.social

5 months ago

Telstra Denies Scattered Spider Data Breach Claims Amid Ransom Threats  Telstra, one of Australia’s leading telecommunications companies, has denied claims made by the hacker group Scattered Spider that it suffered a massive data breach compromising nearly 19 million personal records. The company issued a statement clarifying that its internal systems remain secure and that the data in question was scraped from publicly available sources rather than stolen. In a post on X (formerly Twitter), Telstra emphasized that no passwords, banking details, or sensitive identification data such as driver’s licenses or Medicare numbers were included in the dataset.  The claims originated from a dark web post published on October 3 by a group calling itself Scattered Lapsus$ Hunters, an offshoot of Scattered Spider. The group alleged it had stolen more than 100GB of personally identifiable information, including names and physical addresses, and warned that company executives should negotiate to avoid further data exposure. The attackers claimed the alleged breach took place in July 2023 and threatened to release the data publicly if a ransom was not paid by October 13, 2025. They also asserted possession of over 16 million records contained in a file named telstra.sql, which they said was part of a larger collection of 19 million records.  In a surprising twist, the ransom note also mentioned Salesforce, the global cloud computing company, demanding negotiations begin with its executives. Salesforce swiftly rejected the demand, issuing a statement on October 8 declaring that it “will not engage, negotiate with, or pay any extortion demand,” aligning with global cybersecurity guidelines that discourage ransom payments.  Scattered Lapsus$ Hunters has made similar claims about breaches involving several major corporations, including Qantas, IKEA, and Google AdSense. Cybersecurity intelligence platforms like Cyble Vision have documented multiple previous instances of alleged Telstra data breaches, some dating back to 2022. In one notable case, a threat actor called UnicornLover67 claimed to possess a dataset containing over 47,000 Telstra employee records, including email addresses and hashed passwords. Telstra has previously confirmed smaller breaches linked to third-party service providers, most recently in 2022, affecting around 132,000 customers.  However, cybersecurity analysts remain uncertain whether the current claims represent a fresh breach or a recycling of old data. Experts suggest that previously leaked or publicly available datasets may have been repurposed to appear as new evidence of compromise. This possibility aligns with Telstra’s statement that no recent intrusion has occurred.  The investigation into the alleged breach remains ongoing as the ransom deadline approaches. While Telstra continues to assert that its systems are uncompromised, the persistence of repeated breach claims underscores the growing challenge of misinformation and data reuse in the cybercrime landscape. The Cyber Express has reached out to Telstra for further updates and will continue to monitor the situation as new details emerge.

Telstra Denies Scattered Spider Data Breach Claims Amid Ransom Threats #DataBreach #DataExposure #DataLeak

ransomNews

@ransomnews.online

5 months ago

compliance-savvy narratives to amplify pressure and market impact. Defenders must assume both data leakage and reputational/legal escalation vectors when triaging similar claims.

#ransomNews #redhat #dataexposure

CySecurity News

@cysecuritynews.bsky.social

5 months ago

Sam Altman Pushes for Legal Privacy Protections for ChatGPT Conversations  Sam Altman, CEO of OpenAI, has reiterated his call for legal privacy protections for ChatGPT conversations, arguing they should be treated with the same confidentiality as discussions with doctors or lawyers. “If you talk to a doctor about your medical history or a lawyer about a legal situation, that information is privileged,” Altman said. “We believe that the same level of protection needs to apply to conversations with AI.”   Currently, no such legal safeguards exist for chatbot users. In a July interview, Altman warned that courts could compel OpenAI to hand over private chat data, noting that a federal court has already ordered the company to preserve all ChatGPT logs, including deleted ones. This ruling has raised concerns about user trust and OpenAI’s exposure to legal risks.  Experts are divided on whether Altman’s vision could become reality. Peter Swire, a privacy and cybersecurity law professor at Georgia Tech, explained that while companies seek liability protection, advocates want access to data for accountability. He noted that full privacy privileges for AI may only apply in “limited circumstances,” such as when chatbots explicitly act as doctors or lawyers.  Mayu Tobin-Miyaji, a law fellow at the Electronic Privacy Information Center, echoed that view, suggesting that protections might be extended to vetted AI systems operating under licensed professionals. However, she warned that today’s general-purpose chatbots are unlikely to receive such privileges soon. Mental health experts, meanwhile, are urging lawmakers to ban AI systems from misrepresenting themselves as therapists and to require clear disclosure when users are interacting with bots.   Privacy advocates argue that transparency, not secrecy, should guide AI policy. Tobin-Miyaji emphasized the need for public awareness of how user data is collected, stored, and shared. She cautioned that confidentiality alone will not address the broader safety and accountability issues tied to generative AI.  Concerns about data misuse are already affecting user behavior. After a May court order requiring OpenAI to retain ChatGPT logs indefinitely, many users voiced privacy fears online. Reddit discussions reflected growing unease, with some advising others to “assume everything you post online is public.” While most ChatGPT conversations currently center on writing or practical queries, OpenAI’s research shows an increase in emotionally sensitive exchanges.  Without formal legal protections, users may hesitate to share private details, undermining the trust Altman views as essential to AI’s future. As the debate over AI confidentiality continues, OpenAI’s push for privacy may determine how freely people engage with chatbots in the years to come.

Sam Altman Pushes for Legal Privacy Protections for ChatGPT Conversations #ChatGPT #DataExposure #DataPrivacy