<?xml version='1.0' encoding='UTF-8'?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>InfoSecRadar — Data Breaches &amp; Leaks</title>
    <link>https://infosecradar.com/feeds/breaches.xml</link>
    <description>Data Breaches &amp; Leaks stories from InfoSecRadar</description>
    <atom:link href="https://infosecradar.com/feeds/breaches.xml" rel="self"/>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>InfoSecRadar</generator>
    <language>en</language>
    <lastBuildDate>Fri, 17 Jul 2026 14:10:19 +0000</lastBuildDate>
    <item>
      <title>India’s central bank mandated use of .bank domains to enhance trust – but its registry leaked sensitive info</title>
      <link>https://infosecradar.com/stories/2026/06/30/indias-central-bank-mandated-use-of-bank-domains-to-enhance-trust-but-its-regist/</link>
      <description>India's central bank mandated the use of .bank domains for financial institutions to improve trust, but the registry for these domains has suffered a data leak. The leak exposed sensitive information, including API keys, that could be exploited for impersonation attacks.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/06/30/indias-central-bank-mandated-use-of-bank-domains-to-enhance-trust-but-its-registry-leaked-sensitive-info/5264152</guid>
      <pubDate>Tue, 30 Jun 2026 02:24:46 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/06/30/indias-central-bank-mandated-use-of-bank-domains-to-enhance-trust-but-its-registry-leaked-sensitive-info/5264152">The Register (Security)</source>
    </item>
    <item>
      <title>Nissan Employee Data Breached in Oracle PeopleSoft Hack</title>
      <link>https://infosecradar.com/stories/2026/06/30/nissan-employee-data-breached-in-oracle-peoplesoft-hack/</link>
      <description>Nissan has confirmed a data breach affecting its employees following a hack targeting Oracle's PeopleSoft software. The breach is part of a larger campaign that has impacted a small number of organizations, with the full extent of the ongoing investigation still being determined.</description>
      <guid isPermaLink="false">https://www.securityweek.com/nissan-employee-data-breached-in-oracle-peoplesoft-hack/</guid>
      <pubDate>Tue, 30 Jun 2026 09:25:50 +0000</pubDate>
      <source url="https://www.securityweek.com/nissan-employee-data-breached-in-oracle-peoplesoft-hack/">SecurityWeek</source>
    </item>
    <item>
      <title>Insurance giant Aflac discloses data breach after subsidiary hack</title>
      <link>https://infosecradar.com/stories/2026/06/30/insurance-giant-aflac-discloses-data-breach-after-subsidiary-hack/</link>
      <description>Aflac has reported a data breach impacting its Japan subsidiary, where attackers gained access to personal and bank account information. The breach occurred after attackers compromised the subsidiary's systems.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/insurance-giant-aflac-discloses-data-breach-after-subsidiary-hack/</guid>
      <pubDate>Tue, 30 Jun 2026 11:12:18 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/insurance-giant-aflac-discloses-data-breach-after-subsidiary-hack/">Bleeping Computer</source>
    </item>
    <item>
      <title>Aflac Japan Data Breach Impacts 4.38 Million</title>
      <link>https://infosecradar.com/stories/2026/06/30/aflac-japan-data-breach-impacts-438-million/</link>
      <description>Aflac Japan experienced a data breach where hackers accessed its policyholder portal multiple times between June 15 and June 25. The incident has impacted approximately 4.38 million individuals.</description>
      <guid isPermaLink="false">https://www.securityweek.com/aflac-japan-data-breach-impacts-4-38-million/</guid>
      <pubDate>Tue, 30 Jun 2026 12:52:33 +0000</pubDate>
      <source url="https://www.securityweek.com/aflac-japan-data-breach-impacts-4-38-million/">SecurityWeek</source>
    </item>
    <item>
      <title>Risky Bulletin: Researcher drops giant cache of zero-day exploits</title>
      <link>https://infosecradar.com/stories/2026/07/01/risky-bulletin-researcher-drops-giant-cache-of-zero-day-exploits/</link>
      <description>A researcher has released a large collection of zero-day exploits. The article also briefly mentions a data breach at a sensitive DHS network, a Supreme Court ruling restricting geofence warrants, and Huntress denying accusations of a malicious insider threat.</description>
      <guid isPermaLink="false">https://news.risky.biz/risky-bulletin-researcher-drops-giant-cache-of-zero-day-exploits/</guid>
      <pubDate>Wed, 01 Jul 2026 07:00:47 +0000</pubDate>
      <source url="https://news.risky.biz/risky-bulletin-researcher-drops-giant-cache-of-zero-day-exploits/">Risky Business News</source>
    </item>
    <item>
      <title>Amazon fined $2.25M for withholding evidence from fraud victims</title>
      <link>https://infosecradar.com/stories/2026/07/01/amazon-fined-225m-for-withholding-evidence-from-fraud-victims/</link>
      <description>Amazon has been fined $2.25 million by the U.S. Federal Trade Commission (FTC) for withholding transaction records from victims of fraud. This action by the FTC aims to ensure that individuals affected by fraud can access necessary evidence to reclaim their stolen funds.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/amazon-fined-225m-for-withholding-evidence-from-fraud-victims/</guid>
      <pubDate>Wed, 01 Jul 2026 09:43:27 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/amazon-fined-225m-for-withholding-evidence-from-fraud-victims/">Bleeping Computer</source>
    </item>
    <item>
      <title>DHS confirms hackers breached HSIN info-sharing platform</title>
      <link>https://infosecradar.com/stories/2026/07/01/dhs-confirms-hackers-breached-hsin-info-sharing-platform/</link>
      <description>The Department of Homeland Security (DHS) is investigating a cyberattack that compromised the Homeland Security Information Network (HSIN), a critical platform for sharing information among various government and private sector entities. The breach raised concerns about the security of sensitive data shared through the network.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/dhs-confirms-hackers-breached-hsin-info-sharing-platform/</guid>
      <pubDate>Wed, 01 Jul 2026 17:32:22 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/dhs-confirms-hackers-breached-hsin-info-sharing-platform/">Bleeping Computer</source>
    </item>
    <item>
      <title>Kubota says hackers had month-long access to network systems</title>
      <link>https://infosecradar.com/stories/2026/07/01/kubota-says-hackers-had-month-long-access-to-network-systems/</link>
      <description>Kubota North America Corporation has revealed that malicious actors gained access to parts of its network systems for over a month earlier this year. The extent of the breach and the specific data impacted are still under investigation.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/kubota-says-hackers-had-month-long-access-to-network-systems/</guid>
      <pubDate>Wed, 01 Jul 2026 21:09:06 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/kubota-says-hackers-had-month-long-access-to-network-systems/">Bleeping Computer</source>
    </item>
    <item>
      <title>Medtronic notifies customers impacted by ShinyHunters data breach</title>
      <link>https://infosecradar.com/stories/2026/07/02/medtronic-notifies-customers-impacted-by-shinyhunters-data-breach/</link>
      <description>Medtronic has informed its customers about a data breach that resulted in the exposure of personal data. The breach allowed an unauthorized third party to access sensitive information.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/medtronic-notifies-customers-impacted-by-shinyhunters-data-breach/</guid>
      <pubDate>Thu, 02 Jul 2026 04:25:42 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/medtronic-notifies-customers-impacted-by-shinyhunters-data-breach/">Bleeping Computer</source>
    </item>
    <item>
      <title>Pacemaker manufacturer Medtronic warns patients cybercrooks may have swiped health data</title>
      <link>https://infosecradar.com/stories/2026/07/02/pacemaker-manufacturer-medtronic-warns-patients-cybercrooks-may-have-swiped-heal/</link>
      <description>Medtronic, a medical device manufacturer, has alerted patients that their health data may have been accessed by cybercriminals. The breach occurred months after an attack by the ShinyHunters group, which also targeted the company's insulin pump and other device users.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/02/pacemaker-manufacturer-medtronic-warns-patients-cybercrooks-may-have-swiped-health-data/5265768</guid>
      <pubDate>Thu, 02 Jul 2026 12:54:00 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/02/pacemaker-manufacturer-medtronic-warns-patients-cybercrooks-may-have-swiped-health-data/5265768">The Register (Security)</source>
    </item>
    <item>
      <title>Startup sues Palo Alto Networks' Koi Security, saying an AI-hallucinated report falsely linked it to Chinese espionage</title>
      <link>https://infosecradar.com/stories/2026/07/02/startup-sues-palo-alto-networks-koi-security-saying-an-ai-hallucinated-report-fa/</link>
      <description>MeetingTV, a startup, is suing Palo Alto Networks' Koi Security for defamation. They claim an AI-generated report from Koi Security falsely linked MeetingTV to Chinese espionage. MeetingTV is seeking damages and an injunction to prevent further dissemination of the allegedly false information.</description>
      <guid isPermaLink="false">https://www.theregister.com/legal/2026/07/02/startup-sues-palo-alto-networks-koi-security-saying-an-ai-hallucinated-report-falsely-linked-it-to-chinese-espionage/5266201</guid>
      <pubDate>Thu, 02 Jul 2026 22:47:46 +0000</pubDate>
      <source url="https://www.theregister.com/legal/2026/07/02/startup-sues-palo-alto-networks-koi-security-saying-an-ai-hallucinated-report-falsely-linked-it-to-chinese-espionage/5266201">The Register (Security)</source>
    </item>
    <item>
      <title>Medtronic Data Breach Impacts 3.8 Million People</title>
      <link>https://infosecradar.com/stories/2026/07/03/medtronic-data-breach-impacts-38-million-people/</link>
      <description>Medtronic has disclosed a data breach resulting from a ransomware attack by ShinyHunters, which compromised the company's corporate IT systems. The attackers accessed and stole patients' personal and medical information, affecting approximately 3.8 million individuals.</description>
      <guid isPermaLink="false">https://www.securityweek.com/medtronic-data-breach-impacts-3-8-million-people/</guid>
      <pubDate>Fri, 03 Jul 2026 10:00:00 +0000</pubDate>
      <source url="https://www.securityweek.com/medtronic-data-breach-impacts-3-8-million-people/">SecurityWeek</source>
    </item>
    <item>
      <title>AdaptHealth says attackers sweet-talked their way into cloud systems and stole patient data</title>
      <link>https://infosecradar.com/stories/2026/07/03/adapthealth-says-attackers-sweet-talked-their-way-into-cloud-systems-and-stole-p/</link>
      <description>AdaptHealth, a healthcare solutions provider, has reported a data breach where attackers gained access to its cloud systems by "sweet-talking" a third-party contractor. This intrusion led to the theft of patient health information and insurance billing passwords.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/03/adapthealth-crooks-stole-our-passwords-patient-health-data/5266512</guid>
      <pubDate>Fri, 03 Jul 2026 14:29:00 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/03/adapthealth-crooks-stole-our-passwords-patient-health-data/5266512">The Register (Security)</source>
    </item>
    <item>
      <title>U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case</title>
      <link>https://infosecradar.com/stories/2026/07/04/us-government-entity-paid-kairos-1-million-in-data-theft-extortion-case/</link>
      <description>A U.S. government entity paid approximately $1 million to an entity named Kairos to prevent the leak of stolen data. Analysis suggests Kairos may not operate as a traditional ransomware group, as no evidence of data locking was found.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/us-government-entity-paid-kairos-group.html</guid>
      <pubDate>Sat, 04 Jul 2026 12:47:53 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/us-government-entity-paid-kairos-group.html">The Hacker News</source>
    </item>
    <item>
      <title>Single points of failure fail. The SaaS layer is not an exception</title>
      <link>https://infosecradar.com/stories/2026/07/06/single-points-of-failure-fail-the-saas-layer-is-not-an-exception/</link>
      <description>Higher education institutions increasingly rely on a few large SaaS platforms for critical operations, creating single points of failure. A recent major learning management system breach during finals week highlighted the severe academic and operational disruption that can occur when these platforms go down. This emphasizes the need for robust contingency planning beyond vendor SLAs and compliance certifications.</description>
      <guid isPermaLink="false">https://www.csoonline.com/article/4192380/single-points-of-failure-fail-the-saas-layer-is-not-an-exception.html</guid>
      <pubDate>Mon, 06 Jul 2026 10:00:00 +0000</pubDate>
      <source url="https://www.csoonline.com/article/4192380/single-points-of-failure-fail-the-saas-layer-is-not-an-exception.html">CSO Online</source>
    </item>
    <item>
      <title>Moody Bible Institute breach leaves 2.3M accounts needing salvation, says cyber expert</title>
      <link>https://infosecradar.com/stories/2026/07/06/moody-bible-institute-breach-leaves-23m-accounts-needing-salvation-says-cyber-ex/</link>
      <description>Moody Bible Institute has disclosed a cyberattack that exposed the personal data of approximately 2.3 million individuals. The leaked information includes names, addresses, and dates of birth, with the threat actor group ShinyHunters claiming responsibility for the breach.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/06/moody-bible-institute-breach-leaves-23m-accounts-needing-salvation-says-cyber-expert/5266827</guid>
      <pubDate>Mon, 06 Jul 2026 10:47:09 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/06/moody-bible-institute-breach-leaves-23m-accounts-needing-salvation-says-cyber-expert/5266827">The Register (Security)</source>
    </item>
    <item>
      <title>Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker</title>
      <link>https://infosecradar.com/stories/2026/07/07/court-filing-reveals-windows-device-id-helped-fbi-trace-alleged-scattered-spider/</link>
      <description>U.S. prosecutors have linked an alleged Scattered Spider hacker to a luxury jewelry retailer's breach using a persistent Windows device ID. Microsoft records connected this ID to the attackers' access account during the May 2025 intrusion and subsequently to online accounts believed to belong to 19-year-old Peter Stokes.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/court-filing-reveals-windows-device-id.html</guid>
      <pubDate>Tue, 07 Jul 2026 13:27:20 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/court-filing-reveals-windows-device-id.html">The Hacker News</source>
    </item>
    <item>
      <title>County Government Reportedly Paid $1 Million to Cyber Extortion Group</title>
      <link>https://infosecradar.com/stories/2026/07/07/county-government-reportedly-paid-1-million-to-cyber-extortion-group/</link>
      <description>A county government in Ohio reportedly paid $1 million to a cyber extortion group. The payment was allegedly made to prevent the public release of sensitive stolen data. This incident highlights the significant financial impact of ransomware and extortion attacks on local government entities.</description>
      <guid isPermaLink="false">https://www.securityweek.com/county-government-reportedly-paid-1-million-to-cyber-extortion-group/</guid>
      <pubDate>Tue, 07 Jul 2026 17:31:54 +0000</pubDate>
      <source url="https://www.securityweek.com/county-government-reportedly-paid-1-million-to-cyber-extortion-group/">SecurityWeek</source>
    </item>
    <item>
      <title>Accenture confirms breach after hacker offers stolen data for sale</title>
      <link>https://infosecradar.com/stories/2026/07/07/accenture-confirms-breach-after-hacker-offers-stolen-data-for-sale/</link>
      <description>Accenture has confirmed a security breach after a threat actor claimed to have stolen 35 GB of source code and other data. The hacker is reportedly offering this stolen data for sale on the dark web.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/accenture-confirms-breach-after-hacker-offers-stolen-data-for-sale/</guid>
      <pubDate>Tue, 07 Jul 2026 22:06:07 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/accenture-confirms-breach-after-hacker-offers-stolen-data-for-sale/">Bleeping Computer</source>
    </item>
    <item>
      <title>Telco giant KDDI says data breach affects over 12 million people</title>
      <link>https://infosecradar.com/stories/2026/07/08/telco-giant-kddi-says-data-breach-affects-over-12-million-people/</link>
      <description>Japanese telecommunications company KDDI has announced a data breach affecting over 12 million individuals. The breach occurred on an email platform used by five internet service providers, exposing email addresses and passwords.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/japanese-telecom-giant-kddi-says-data-breach-affects-12-million-people/</guid>
      <pubDate>Wed, 08 Jul 2026 11:24:16 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/japanese-telecom-giant-kddi-says-data-breach-affects-12-million-people/">Bleeping Computer</source>
    </item>
    <item>
      <title>Accenture Confirms Data Breach After Hacker Claims Source Code Theft</title>
      <link>https://infosecradar.com/stories/2026/07/08/accenture-confirms-data-breach-after-hacker-claims-source-code-theft/</link>
      <description>Accenture has confirmed a data breach after a hacker claimed to have stolen source code from the company. The company stated that the incident has been contained, the source code has been remediated, and there has been no impact on operations or service delivery.</description>
      <guid isPermaLink="false">https://www.securityweek.com/accenture-confirms-data-breach-after-hacker-claims-source-code-theft/</guid>
      <pubDate>Wed, 08 Jul 2026 16:09:15 +0000</pubDate>
      <source url="https://www.securityweek.com/accenture-confirms-data-breach-after-hacker-claims-source-code-theft/">SecurityWeek</source>
    </item>
    <item>
      <title>Mount Royal University confirms breach as hackers claim attack</title>
      <link>https://infosecradar.com/stories/2026/07/08/mount-royal-university-confirms-breach-as-hackers-claim-attack/</link>
      <description>Mount Royal University has confirmed a data breach after hackers claimed responsibility for the attack. The attackers reportedly stole and subsequently deleted data from the university's file storage systems after gaining access to its network.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/mount-royal-university-confirms-breach-as-hackers-claim-attack/</guid>
      <pubDate>Wed, 08 Jul 2026 21:26:59 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/mount-royal-university-confirms-breach-as-hackers-claim-attack/">Bleeping Computer</source>
    </item>
    <item>
      <title>AssuranceAmerica data breach exposes records of 6.9 million drivers</title>
      <link>https://infosecradar.com/stories/2026/07/09/assuranceamerica-data-breach-exposes-records-of-69-million-drivers/</link>
      <description>AssuranceAmerica, an American insurance company, has reported a data breach that exposed the records of approximately 6.9 million drivers. Attackers gained unauthorized access to the company's systems earlier this year, leading to the exposure of sensitive driver information.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/assuranceamerica-data-breach-exposes-records-of-69-million-drivers/</guid>
      <pubDate>Thu, 09 Jul 2026 07:47:16 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/assuranceamerica-data-breach-exposes-records-of-69-million-drivers/">Bleeping Computer</source>
    </item>
    <item>
      <title>Mount Royal University Confirms Data Stolen in Ransomware Attack</title>
      <link>https://infosecradar.com/stories/2026/07/09/mount-royal-university-confirms-data-stolen-in-ransomware-attack/</link>
      <description>Mount Royal University has confirmed a ransomware attack where hackers gained access to its internal network and deleted two drives containing sensitive data. The compromised information includes details about employees, students, and the university itself.</description>
      <guid isPermaLink="false">https://www.securityweek.com/mount-royal-university-confirms-data-stolen-in-ransomware-attack/</guid>
      <pubDate>Thu, 09 Jul 2026 10:06:18 +0000</pubDate>
      <source url="https://www.securityweek.com/mount-royal-university-confirms-data-stolen-in-ransomware-attack/">SecurityWeek</source>
    </item>
    <item>
      <title>12 Million Impacted by Data Breach at Japanese Telco KDDI</title>
      <link>https://infosecradar.com/stories/2026/07/09/12-million-impacted-by-data-breach-at-japanese-telco-kddi/</link>
      <description>A data breach at Japanese telecommunications company KDDI has impacted approximately 12 million individuals. Hackers reportedly exploited a zero-day vulnerability in a third-party system to gain access to KDDI's email system for ISPs.</description>
      <guid isPermaLink="false">https://www.securityweek.com/12-million-impacted-by-data-breach-at-japanese-telco-kddi/</guid>
      <pubDate>Thu, 09 Jul 2026 12:18:46 +0000</pubDate>
      <source url="https://www.securityweek.com/12-million-impacted-by-data-breach-at-japanese-telco-kddi/">SecurityWeek</source>
    </item>
    <item>
      <title>An unnamed US county – perhaps in Ohio – paid $1M extortion demand to cybercriminals</title>
      <link>https://infosecradar.com/stories/2026/07/09/an-unnamed-us-county-perhaps-in-ohio-paid-1m-extortion-demand-to-cybercriminals/</link>
      <description>An unnamed U.S. county, potentially in Ohio, paid a $1 million extortion demand to cybercriminals. Leaked negotiation transcripts reveal details of the incident, indicating a successful ransomware attack.</description>
      <guid isPermaLink="false">https://www.theregister.com/cyber-crime/2026/07/09/an-unnamed-us-county-perhaps-in-ohio-paid-1m-extortion-demand-to-cybercriminals/5269575</guid>
      <pubDate>Thu, 09 Jul 2026 22:30:21 +0000</pubDate>
      <source url="https://www.theregister.com/cyber-crime/2026/07/09/an-unnamed-us-county-perhaps-in-ohio-paid-1m-extortion-demand-to-cybercriminals/5269575">The Register (Security)</source>
    </item>
    <item>
      <title>Scot NHS Trust probes email stuffup involving maternity patients' data</title>
      <link>https://infosecradar.com/stories/2026/07/10/scot-nhs-trust-probes-email-stuffup-involving-maternity-patients-data/</link>
      <description>NHS Forth Valley is investigating an email data protection incident involving maternity patients' data. The incident occurred due to a "stuff-up" in email handling, highlighting ongoing data protection challenges within the health service.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/10/scot-nhs-trust-probes-email-stuffup-involving-maternity-patients-data/5269749</guid>
      <pubDate>Fri, 10 Jul 2026 09:17:54 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/10/scot-nhs-trust-probes-email-stuffup-involving-maternity-patients-data/5269749">The Register (Security)</source>
    </item>
    <item>
      <title>China, India-Linked Hackers Both Targeted Same Pakistani Police Force</title>
      <link>https://infosecradar.com/stories/2026/07/10/china-india-linked-hackers-both-targeted-same-pakistani-police-force/</link>
      <description>SentinelOne reports that both Chinese and Indian-linked hacking groups have been targeting the Balochistan Police force in Pakistan for at least the past two years. This indicates a sustained and multifaceted threat against the organization.</description>
      <guid isPermaLink="false">https://www.securityweek.com/china-india-linked-hackers-both-targeted-same-pakistani-police-force/</guid>
      <pubDate>Fri, 10 Jul 2026 11:55:11 +0000</pubDate>
      <source url="https://www.securityweek.com/china-india-linked-hackers-both-targeted-same-pakistani-police-force/">SecurityWeek</source>
    </item>
    <item>
      <title>Fashion mart Miinto unzips breach details, warns shoppers to watch for phisherfolk</title>
      <link>https://infosecradar.com/stories/2026/07/10/fashion-mart-miinto-unzips-breach-details-warns-shoppers-to-watch-for-phisherfol/</link>
      <description>Fashion e-commerce platform Miinto has disclosed a data breach that occurred after a perpetrator accessed its order management system. The company is notifying affected customers and advising them to be vigilant against potential phishing attempts.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/10/miinto-fesses-up-to-breach-says-customers-open-to-phishing/5269891</guid>
      <pubDate>Fri, 10 Jul 2026 12:10:41 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/10/miinto-fesses-up-to-breach-says-customers-open-to-phishing/5269891">The Register (Security)</source>
    </item>
    <item>
      <title>In Other News: DHS Database Hacked, Adobe Boosts Patch Cadence, Canada Disrupts Ransomware Ops</title>
      <link>https://infosecradar.com/stories/2026/07/10/in-other-news-dhs-database-hacked-adobe-boosts-patch-cadence-canada-disrupts-ran/</link>
      <description>Several cybersecurity incidents and developments were highlighted, including a hack of a DHS database, Adobe's increased patch frequency, and Canadian efforts to disrupt ransomware operations. Additional news includes a lawsuit against Abnormal AI by Anthropic, a data breach affecting 7 million people at AssuranceAmerica, and the NSA reinstating its TAO.</description>
      <guid isPermaLink="false">https://www.securityweek.com/in-other-news-dhs-database-hacked-adobe-boosts-patch-cadence-canada-disrupts-ransomware-ops/</guid>
      <pubDate>Fri, 10 Jul 2026 15:01:19 +0000</pubDate>
      <source url="https://www.securityweek.com/in-other-news-dhs-database-hacked-adobe-boosts-patch-cadence-canada-disrupts-ransomware-ops/">SecurityWeek</source>
    </item>
    <item>
      <title>Police suspects Dutch hackers were involved in Odido breach</title>
      <link>https://infosecradar.com/stories/2026/07/10/police-suspects-dutch-hackers-were-involved-in-odido-breach/</link>
      <description>The Dutch National Police has uncovered strong evidence suggesting that Dutch hackers were behind a data breach at telecommunications provider Odido that occurred in February. The investigation is ongoing as authorities seek to identify and apprehend the individuals responsible.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/police-suspects-dutch-hackers-were-involved-in-odido-breach/</guid>
      <pubDate>Fri, 10 Jul 2026 16:37:01 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/police-suspects-dutch-hackers-were-involved-in-odido-breach/">Bleeping Computer</source>
    </item>
    <item>
      <title>Cybercriminals Flock to Healthcare Businesses as Attacks Surge</title>
      <link>https://infosecradar.com/stories/2026/07/10/cybercriminals-flock-to-healthcare-businesses-as-attacks-surge/</link>
      <description>Cyberattacks targeting healthcare service providers and related businesses have more than doubled in the first half of 2026, significantly outpacing the modest growth in attacks against hospitals and clinics. This surge indicates a shift in criminal focus within the healthcare sector.</description>
      <guid isPermaLink="false">https://www.darkreading.com/threat-intelligence/cybercriminals-healthcare-businesses-attacks-surge</guid>
      <pubDate>Fri, 10 Jul 2026 16:51:34 +0000</pubDate>
      <source url="https://www.darkreading.com/threat-intelligence/cybercriminals-healthcare-businesses-attacks-surge">Dark Reading</source>
    </item>
    <item>
      <title>Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns</title>
      <link>https://infosecradar.com/stories/2026/07/11/hackers-weaponize-balochistan-police-portal-in-multi-group-espionage-campaigns/</link>
      <description>Cybersecurity researchers have uncovered persistent cyber espionage campaigns targeting Pakistani law enforcement, with suspected China- and India-aligned threat actors exploiting the Balochistan Police portal. The attackers gained access to servers managing police and citizen data, including criminal records, between February 2024 and April 2026.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/hackers-weaponize-balochistan-police.html</guid>
      <pubDate>Sat, 11 Jul 2026 17:49:31 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/hackers-weaponize-balochistan-police.html">The Hacker News</source>
    </item>
    <item>
      <title>Centers Laboratory Data Breach Affects 540,000 Individuals</title>
      <link>https://infosecradar.com/stories/2026/07/13/centers-laboratory-data-breach-affects-540000-individuals/</link>
      <description>Centers Laboratory, a healthcare testing and laboratory services provider, has experienced a data breach. The WorldLeaks extortion group claims to have stolen 720 GB of data, potentially impacting 540,000 individuals.</description>
      <guid isPermaLink="false">https://www.securityweek.com/centers-laboratory-data-breach-affects-540000-individuals/</guid>
      <pubDate>Mon, 13 Jul 2026 08:10:44 +0000</pubDate>
      <source url="https://www.securityweek.com/centers-laboratory-data-breach-affects-540000-individuals/">SecurityWeek</source>
    </item>
    <item>
      <title>Progress orders emergency ShareFile server shutdown over mystery security threat</title>
      <link>https://infosecradar.com/stories/2026/07/13/progress-orders-emergency-sharefile-server-shutdown-over-mystery-security-threat/</link>
      <description>Progress has ordered an emergency shutdown of its ShareFile servers due to a mysterious security threat. While the vendor claims there's no evidence of unauthorized access, they are advising customers to take drastic precautions, including disabling the service.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/13/progress-orders-emergency-sharefile-server-shutdown-over-mystery-security-threat/5270281</guid>
      <pubDate>Mon, 13 Jul 2026 10:31:00 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/13/progress-orders-emergency-sharefile-server-shutdown-over-mystery-security-threat/5270281">The Register (Security)</source>
    </item>
    <item>
      <title>Lidl discloses online shop breach after service provider hack</title>
      <link>https://infosecradar.com/stories/2026/07/13/lidl-discloses-online-shop-breach-after-service-provider-hack/</link>
      <description>Lidl has informed customers in Germany, Belgium, and the Netherlands about a data breach that occurred at one of its service providers. Attackers gained access to the service provider's systems and consequently stole personal information belonging to Lidl customers.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/lidl-discloses-online-shop-breach-after-service-provider-hack/</guid>
      <pubDate>Mon, 13 Jul 2026 14:19:43 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/lidl-discloses-online-shop-breach-after-service-provider-hack/">Bleeping Computer</source>
    </item>
    <item>
      <title>Lessons Learned from CISA’s Recent GitHub Leak</title>
      <link>https://infosecradar.com/stories/2026/07/13/lessons-learned-from-cisas-recent-github-leak/</link>
      <description>CISA has released a postmortem on a data leak where a contractor inadvertently exposed internal credentials, including AWS Govcloud keys, on a public GitHub repository for nearly six months. KrebsOnSecurity was instrumental in bringing the issue to CISA's attention. The agency's identified response gaps offer valuable insights for all security teams.</description>
      <guid isPermaLink="false">https://krebsonsecurity.com/2026/07/lessons-learned-from-cisas-recent-github-leak/</guid>
      <pubDate>Mon, 13 Jul 2026 15:03:28 +0000</pubDate>
      <source url="https://krebsonsecurity.com/2026/07/lessons-learned-from-cisas-recent-github-leak/">Krebs on Security</source>
    </item>
    <item>
      <title>Japan's largest taxi operator shuts systems after cyberattack</title>
      <link>https://infosecradar.com/stories/2026/07/13/japans-largest-taxi-operator-shuts-systems-after-cyberattack/</link>
      <description>Japan's largest taxi operator, Nihon Kotsu, has shut down parts of its systems following a cyberattack. The attack has disrupted the company's operations, though further details about the nature of the attack or the extent of the compromise have not yet been released.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/japans-largest-taxi-operator-shuts-systems-after-cyberattack/</guid>
      <pubDate>Mon, 13 Jul 2026 20:18:59 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/japans-largest-taxi-operator-shuts-systems-after-cyberattack/">Bleeping Computer</source>
    </item>
    <item>
      <title>Musk promises purge after Grok Build caught sending entire repos to the cloud</title>
      <link>https://infosecradar.com/stories/2026/07/14/musk-promises-purge-after-grok-build-caught-sending-entire-repos-to-the-cloud/</link>
      <description>Elon Musk has pledged a significant cleanup following the discovery that xAI's Grok AI was inadvertently sending entire code repositories to its cloud servers. The issue, which exposed sensitive intellectual property, has reportedly been resolved, with uploads ceasing.</description>
      <guid isPermaLink="false">https://www.theregister.com/ai-and-ml/2026/07/14/musk-promises-purge-after-grok-build-caught-sending-entire-repos-to-the-cloud/5271123</guid>
      <pubDate>Tue, 14 Jul 2026 12:39:03 +0000</pubDate>
      <source url="https://www.theregister.com/ai-and-ml/2026/07/14/musk-promises-purge-after-grok-build-caught-sending-entire-repos-to-the-cloud/5271123">The Register (Security)</source>
    </item>
    <item>
      <title>Synopsys Finds No Evidence of Data Breach Amid Bosch Hack Claims</title>
      <link>https://infosecradar.com/stories/2026/07/14/synopsys-finds-no-evidence-of-data-breach-amid-bosch-hack-claims/</link>
      <description>The cybercrime group D1R claimed to have stolen data from Synopsys and Bosch and threatened to release it unless a ransom was paid. Synopsys has investigated the claims and found no evidence to support a data breach at their company.</description>
      <guid isPermaLink="false">https://www.securityweek.com/synopsys-finds-no-evidence-of-data-breach-following-bosch-hack-claims/</guid>
      <pubDate>Tue, 14 Jul 2026 18:18:45 +0000</pubDate>
      <source url="https://www.securityweek.com/synopsys-finds-no-evidence-of-data-breach-following-bosch-hack-claims/">SecurityWeek</source>
    </item>
    <item>
      <title>Spanish Police take down €140 million cyber fraud ring, arrest four</title>
      <link>https://infosecradar.com/stories/2026/07/14/spanish-police-take-down-140-million-cyber-fraud-ring-arrest-four/</link>
      <description>Spanish police have dismantled a sophisticated cybercrime ring that defrauded victims out of €140 million through investment scams and business email compromise (BEC) attacks. Four individuals have been arrested as part of the operation, which also targeted money laundering activities associated with the illicit gains.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/spanish-police-take-down-140-million-cyber-fraud-ring-arrest-four/</guid>
      <pubDate>Tue, 14 Jul 2026 20:23:09 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/spanish-police-take-down-140-million-cyber-fraud-ring-arrest-four/">Bleeping Computer</source>
    </item>
    <item>
      <title>Tech support scam caused massive data breach at Australian airline Qantas</title>
      <link>https://infosecradar.com/stories/2026/07/16/tech-support-scam-caused-massive-data-breach-at-australian-airline-qantas/</link>
      <description>A tech support scam led to a massive data breach at Australian airline Qantas, potentially exposing the personal information of 5.7 million people. The breach occurred due to the scam, although the airline claims the exposed data does not violate privacy rules.</description>
      <guid isPermaLink="false">https://www.theregister.com/cyber-crime/2026/07/16/tech-support-scam-caused-massive-data-breach-at-australian-airline-qantas/5272267</guid>
      <pubDate>Thu, 16 Jul 2026 06:27:47 +0000</pubDate>
      <source url="https://www.theregister.com/cyber-crime/2026/07/16/tech-support-scam-caused-massive-data-breach-at-australian-airline-qantas/5272267">The Register (Security)</source>
    </item>
    <item>
      <title>Law firm insisted on one password to rule them all</title>
      <link>https://infosecradar.com/stories/2026/07/16/law-firm-insisted-on-one-password-to-rule-them-all/</link>
      <description>A law firm reportedly used a single, shared administrative password for multiple systems, including its case management system. This practice allowed unauthorized access to sensitive client data, as any individual with the password could potentially view or alter confidential information.</description>
      <guid isPermaLink="false">https://www.theregister.com/security/2026/07/16/law-firm-insisted-on-one-password-to-rule-them-all/5269484</guid>
      <pubDate>Thu, 16 Jul 2026 07:00:00 +0000</pubDate>
      <source url="https://www.theregister.com/security/2026/07/16/law-firm-insisted-on-one-password-to-rule-them-all/5269484">The Register (Security)</source>
    </item>
    <item>
      <title>Scattered Spider members behind TfL hack get five years in prison</title>
      <link>https://infosecradar.com/stories/2026/07/16/scattered-spider-members-behind-tfl-hack-get-five-years-in-prison/</link>
      <description>Two key members of the Scattered Spider cybercrime group have been sentenced to five years and six months in prison each. This sentencing stems from their involvement in the 2024 hack of Transport for London (TfL). The conviction highlights the legal consequences for individuals engaged in sophisticated cyberattacks.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/scattered-spider-members-behind-transport-for-london-hack-get-five-years-in-prison/</guid>
      <pubDate>Thu, 16 Jul 2026 12:31:29 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/scattered-spider-members-behind-transport-for-london-hack-get-five-years-in-prison/">Bleeping Computer</source>
    </item>
    <item>
      <title>Brit Scattered Spider duo handed tickets to prison over Transport for London attack</title>
      <link>https://infosecradar.com/stories/2026/07/16/brit-scattered-spider-duo-handed-tickets-to-prison-over-transport-for-london-att/</link>
      <description>Two individuals associated with the cybercrime group Scattered Spider have been sentenced to prison for their roles in the 2023 cyberattack on Transport for London (TfL). This conviction marks the largest cybercrime prosecution in UK history.</description>
      <guid isPermaLink="false">https://www.theregister.com/cyber-crime/2026/07/16/brit-scattered-spider-duo-handed-tickets-to-prison-over-transport-for-london-attack/5272446</guid>
      <pubDate>Thu, 16 Jul 2026 12:49:38 +0000</pubDate>
      <source url="https://www.theregister.com/cyber-crime/2026/07/16/brit-scattered-spider-duo-handed-tickets-to-prison-over-transport-for-london-attack/5272446">The Register (Security)</source>
    </item>
    <item>
      <title>23andMe to pay $18 million in new genetics data breach settlement</title>
      <link>https://infosecradar.com/stories/2026/07/16/23andme-to-pay-18-million-in-new-genetics-data-breach-settlement/</link>
      <description>Genetic testing company 23andMe will pay $18 million to settle claims from 43 attorneys general. The settlement addresses allegations that the company failed to adequately protect customers' genetic data. This case highlights the importance of robust data security measures for companies handling sensitive personal information.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/23andme-to-pay-18-million-in-new-genetics-data-breach-settlement/</guid>
      <pubDate>Thu, 16 Jul 2026 13:47:23 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/23andme-to-pay-18-million-in-new-genetics-data-breach-settlement/">Bleeping Computer</source>
    </item>
    <item>
      <title>Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack</title>
      <link>https://infosecradar.com/stories/2026/07/16/two-scattered-spider-hackers-get-55-years-each-for-29-million-tfl-hack/</link>
      <description>Two hackers associated with the Scattered Spider group, Owen Flowers and Thalha Jubair, have been sentenced to five and a half years in prison each for their 2024 hack of Transport for London (TfL). The attack rendered 148 TfL systems inoperable and required all 27,000 employees to reset their passwords in person, resulting in significant losses and recovery costs for the transport authority.</description>
      <guid isPermaLink="false">https://thehackernews.com/2026/07/two-scattered-spider-hackers-get-55.html</guid>
      <pubDate>Thu, 16 Jul 2026 17:09:25 +0000</pubDate>
      <source url="https://thehackernews.com/2026/07/two-scattered-spider-hackers-get-55.html">The Hacker News</source>
    </item>
    <item>
      <title>Coca-Cola says Fairlife ransomware attack halts US dairy production</title>
      <link>https://infosecradar.com/stories/2026/07/16/coca-cola-says-fairlife-ransomware-attack-halts-us-dairy-production/</link>
      <description>Coca-Cola's dairy subsidiary, Fairlife, has experienced a ransomware attack that has temporarily halted its production across the United States. The attack has impacted operations, leading to a suspension of Fairlife product manufacturing.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/coca-cola-says-fairlife-ransomware-attack-halts-us-dairy-production/</guid>
      <pubDate>Thu, 16 Jul 2026 21:09:41 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/coca-cola-says-fairlife-ransomware-attack-halts-us-dairy-production/">Bleeping Computer</source>
    </item>
    <item>
      <title>US charges two over laundering $43 million from investment fraud</title>
      <link>https://infosecradar.com/stories/2026/07/17/us-charges-two-over-laundering-43-million-from-investment-fraud/</link>
      <description>U.S. prosecutors have charged a man and a woman in New York for their involvement in a significant crime ring that laundered $43 million obtained through investment fraud scams. The charges stem from their alleged roles in facilitating the movement of illicit funds, which were derived from cyber-enabled investment schemes.</description>
      <guid isPermaLink="false">https://www.bleepingcomputer.com/news/security/us-charges-two-over-laundering-43-million-from-investment-fraud/</guid>
      <pubDate>Fri, 17 Jul 2026 08:13:37 +0000</pubDate>
      <source url="https://www.bleepingcomputer.com/news/security/us-charges-two-over-laundering-43-million-from-investment-fraud/">Bleeping Computer</source>
    </item>
    <item>
      <title>Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei</title>
      <link>https://infosecradar.com/stories/2026/07/17/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/</link>
      <description>Japanese frozen food giant Nichirei experienced a cyberattack on July 13 that disrupted its operations. The company has begun the process of gradually restoring its systems.</description>
      <guid isPermaLink="false">https://www.securityweek.com/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/</guid>
      <pubDate>Fri, 17 Jul 2026 09:06:27 +0000</pubDate>
      <source url="https://www.securityweek.com/cyberattack-disrupts-operations-of-japanese-frozen-food-giant-nichirei/">SecurityWeek</source>
    </item>
  </channel>
</rss>
