PROBABLYPWNED
Home/Data Breaches

Data Breaches

124 articles

AssuranceAmerica Breach Exposes 6.9M Driver's License Numbers
Data Breaches4 min read

AssuranceAmerica Breach Exposes 6.9M Driver's License Numbers

Insurance provider AssuranceAmerica disclosed a data breach affecting 6.9 million customers—the largest known exposure of driver's license numbers in 2026. Attackers compromised employee credentials.

Sarah MitchellJul 11, 2026
FortiBleed: 73,000 Fortinet VPN Credentials Exposed
Data Breaches4 min read

FortiBleed: 73,000 Fortinet VPN Credentials Exposed

Russian-speaking threat group harvested plaintext credentials for 73,000+ Fortinet firewalls across 194 countries. Samsung, Oracle, and NATO contractor among victims.

Sarah MitchellJun 17, 2026
Novo Nordisk Discloses Breach Exposing Clinical Trial Patient Data
Data Breaches4 min read

Novo Nordisk Discloses Breach Exposing Clinical Trial Patient Data

Pharmaceutical giant Novo Nordisk confirmed attackers copied clinical trial patient data and healthcare professional information from internal systems. The company says affected data was pseudonymized and cannot identify patients by name.

Data Breach DeskJun 14, 2026
ServiceNow API Flaw Exposed Customer Data Before Patch
Data Breaches3 min read

ServiceNow API Flaw Exposed Customer Data Before Patch

Attackers exploited an unauthenticated API endpoint to query ServiceNow customer instances. The company received a bug report in April but didn't patch until June 5—after exploitation began.

Data Breach DeskJun 11, 2026
UN Food Agency Breach Exposes 600,000 Gaza Households
Data Breaches5 min read

UN Food Agency Breach Exposes 600,000 Gaza Households

A cyberattack on the World Food Programme exposed sensitive data of 600,000 Gaza households, potentially the largest humanitarian data breach on record. 17-day notification delay raises concerns.

Data Breach DeskJun 5, 2026
ShinyHunters Claims 275M Records in Instructure Canvas Breach
Data Breaches4 min read

ShinyHunters Claims 275M Records in Instructure Canvas Breach

Educational tech giant Instructure confirms data breach affecting Canvas LMS users. ShinyHunters claims 275 million student and teacher records stolen from 9,000 schools, with a May 6 leak deadline.

Data Breach DeskMay 4, 2026
Trellix Confirms Breach of Source Code Repository
Data Breaches4 min read

Trellix Confirms Breach of Source Code Repository

Trellix, formed from McAfee Enterprise and FireEye merger, disclosed unauthorized access to source code. Forensic investigation ongoing with no evidence of code exploitation.

Data Breach DeskMay 3, 2026
ShinyHunters Hits Canada Life With 5.6M Record Breach
Data Breaches4 min read

ShinyHunters Hits Canada Life With 5.6M Record Breach

ShinyHunters claims breach of Canada Life Assurance exposing 5.6 million Salesforce records with PII. Ransom deadline passed April 21, 2026—data leak threatened.

Data Breach DeskApr 21, 2026
Vercel Breach Traced to Compromised Third-Party OAuth App
Data Breaches4 min read

Vercel Breach Traced to Compromised Third-Party OAuth App

Compromised Google Workspace OAuth app 110671459871-30f1spbu0hptbs60cb4vsmv79i7bbvqj breached Vercel, exposing API keys and source code. Hackers demand $2M; audit Workspace apps and rotate credentials.

Data Breach DeskApr 19, 2026
Booking.com Breach Exposes Guest Reservation Data
Data Breaches4 min read

Booking.com Breach Exposes Guest Reservation Data

Booking.com confirms hackers accessed customer reservation data including names, emails, phone numbers, and booking details. Company resets PINs but won't disclose breach scope.

Data Breach DeskApr 16, 2026
North Korea Behind $285M Drift Protocol Heist
Data Breaches3 min read

North Korea Behind $285M Drift Protocol Heist

Solana's Drift Protocol lost $285 million in 2026's largest DeFi hack. TRM Labs attributes the attack to North Korean actors who exploited oracle manipulation and pre-signed transactions.

Data Breach DeskApr 4, 2026
European Commission Confirms AWS Cloud Breach
Data Breaches3 min read

European Commission Confirms AWS Cloud Breach

Hackers compromised the European Commission's Amazon cloud infrastructure, claiming to steal 350GB of data including employee databases. Investigation ongoing.

Data Breach DeskMar 28, 2026