Editor's Message

Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and PRiSM celebrated it's third anniversary. Both projects have made a huge impact on my life and I'd like to thank each and everyone of you who have supported me, with special thanks to those individuals and communities who have helped me build up my knowledge on cybercrime and ransomware over the years. Thanks again for all your continued support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington D.C.

Monday, 22 June 2026

Data Breaches Digest - Week 26 2026

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 22nd June and 28th June 2026.


22nd June

23andMe settlement shows what privacy is really worth

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

AI and Ransomware Fuel an Explosion in Transnational Crime, Interpol Warns

AIBOMs: Bringing AI Security Out of the Shadows, A Practical Guide for Security Professionals

Anubis Ransomware Attack Cripples European Port Operations, ₹94 Crores Ransom Reportedly Demanded

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

AssuranceAmerica Data Breach Exposes Sensitive Info for At Least 611k Individuals

ATM Fraud Alert: How to Protect Yourself from Card Skimming, Phishing, and Other Banking Scams in 2026

Australia: Victorian RV dealer suffers alleged cyber attack

Belgian State Security hit by Ivanti data breach

Beyond encryption: Ransomware now threatens to leak stolen data

Brazil Suspects Hack Behind Unauthorized ‘Misanthropy’ National Phone Alert

Britain's cyber agency warns AI-written code could create security disasters if left unchecked

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices

Canadian lender TD tells some employees it will use software to monitor their work

Chinese Cyber Contractors Use Malware, Botnets, and Stolen Data to Enable State Operations

Cyber criminals target World Cup 2026

Data Breach Impacts More Than 3 Million Texas Hunters

Data leak fears after ransomware attack hits Hong Kong’s famous Kee Wah Bakery

Developers giving attackers a free ride after hundreds of iPhone AI apps found exposing credentials

Dutch privacy regulator warns municipalities are struggling to control public camera surveillance

Encrypted DNS still tells an eavesdropper where to look

Fake Grand Theft Auto 6 (GTA 6) beta testing programme targets gamers with phishing emails and malware downloads

GentleKiller Framework Disables Victims' Security Software

Hackers Deploy Prinz Eugen Ransomware With RMM Abuse and Hands-On-Keyboard Tactics

High-Severity Apple Beats Studio Buds Flaw Enables Eavesdropping Attacks

How Cybercriminals Are Exploiting India’s Travel Season Through Phishing, Fraud and Fake Websites

How to recover rapidly and safely from a cyber attack

Hundreds of AI-powered iOS apps found exposing credentials

Interpol flags sharp rise in cybercrime across Asia

INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens

Klue hack results in data breach at several cybersecurity firms

Kodak Confirms Data Breach Linked to ShinyHunters Hacking Group

KPMG Confirms Optus Data Breach Amid Scrutiny

Major GNU software repository Savannah fixes 2-year flaw that left the platform exposed

Massive security flaw discovered in popular SSH library libssh2

Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

National Cyber Security Centre (NCSC) Urges Fortinet Customers to Tackle FortiBleed Fallout

New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer

OXLOADER: New Windows Loader Drops CASTLESTEALER via Google Ads

Phishing the agent: Why AI guardrails aren’t enough

Prinz Eugen Ransomware Hits Recent Files First and Skips Ransom Notes

Prinz Eugen ransomware encrypts the most recent files

Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data

Scammers Use Fake GitHub Stars, VirusTotal Reviews to Spread Crypto Clipper

ShinyHunters Again? Council of Europe Probing Theft of Payroll, HR and Other Sensitive Data

Singapore: Land Transport Authority (LTA) impersonation phishing scams on the rise again, with at least $74,000 lost in 3 weeks

South Korea: Government's Information Security Lapses Highlighted by Data Breach

South Korea: TVING Fails to Announce Data Breach Scale

Suspected cyberattack triggers false emergency alerts across parts of Brazil

Texas Hunting and Fishing License Holders Hit by Data Breach

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

Texas Parks and Wildlife Data Breach Affects Over 3 Million License Customers

Texas Parks and Wildlife warns 3 million hunting, fishing license customers about data breach

Texas vendor breach exposes personal data of more than 3 million people

There are 3 obvious signs someone is stealing your Wi-Fi - and several ways to stop them

Third-party data breach may affect some former Mayo Clinic patients

TVING data breach estimated at around 19 million users...Concerns grow over impact on CJ ENM earnings

Two men plead guilty over £39 million Transport for London (TfL) cyber attack

UK: Black Country teenager to stand trial for London transport cyber attack

Understand ‘phishing’? Think again: why cybersecurity language is failing us

Unpatchable BootROM Flaw Impacts Apple A12, A13 Chips

Will your small business be fined for reporting a data breach?

Posted by at
Labels: