Welcome to DBD. On March 8th 2026, DBD celebrated it's sixth anniversary and 
Dentons Senior Analyst, Washington D.C.
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 29th June and 5th July 2026.29th June
2.7 Million Sysco Emails Leaked Following ShinyHunters Data Breach
AI Will Test Identity Infrastructure, Organizations Need More Prep
Apple supplier Tata tightens internal controls post-data breach
ATM Jackpotting Gang Members Sentenced for Ploutus Malware Attacks
Bluekit Phishing Kit Uses Browser-in-the-Middle Attacks to Evade Detection
Companies keep bolting AI onto their products, and the security bill is coming due
Cyber insurance is delivering meaningful financial protection, with a majority of data breach and first-party losses covered according to Willis’ latest report
Danish official warns data stored on US cloud is shared with American spies
DCloud Uni-App Templates Help Fraudsters Scale Crypto, Mobility, and Messaging Phishing Scams
Dell Wyse Management Suite Flaws Let Remote Attackers Execute Code
Don’t pay the ransom: Warning to organisations to protect themselves from ransomware attacks as more than 320 businesses affected last year
ExtraHop report finds nearly half of ransomware victims suffer data theft before detection
FBI Sounds Alarm Over Russian Intelligence Signal Phishing
Ghostwriter Hackers Use Real-Time WebSocket Relay to Bypass SMS and OTP MFA
Ghostwriter Phishing Infrastructure Targets Gmail and Ukrainian Email Portal Users
GIFTEDCROOK Payload Targets Chrome, Firefox, KeePass, OpenVPN, and Sensitive Documents
Government Website in India Taken Offline After Defacement Attack
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
India: Pune Property Tax Data Breach Sparks Alarm
India’s Meerut Development Authority Website Defaced With Pro-Pakistan Messages
Indian auto giant Bajaj targeted in ransomware attack
Japan Hit By Major Data Breach: Up to 14.22 Million Email Login Credentials Potentially Exposed
Japanese AI police chief takes on $2 billion scam epidemic
KDDI Breach Exposes Up to 14.2 Million Email Logins at Six ISPs
KDDI Data Breach Exposes 14 Million Emails in Japan
KDDI Data Breach Exposes 14.2 Million Logins: Shared Infrastructure Flaw Hits Six ISPs
Microsoft 365 Apps Security Update Fixes High-Severity Excel RCE Vulnerability
Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts
Microsoft reveals phishing campaign targeting hotels in Europe and Asia
Millenium RAT Malware-as-a-Service (MaaS) Uses Telegram Bot API to Control Infected Windows Machines
Most teams accept higher risk for faster AI database work
Mozilla warns of indirect prompt injection risk in AI coding agents
Nova ransomware group takes responsibility for NSW Rural Fire Service (RFS) hack
Public Proof-of-Concept (PoC) Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
Rokarolla Uses Fallback C2 Domains to Maintain Control Over Infected Android Devices
Russian Hackers Accused of Destructive Cyber-Attack on Jaguar Land Rover
Russian spies are targeting Signal accounts linked to Ukraine with new phishing tactic
Russian state hackers stealing new Signal accounts with old backup keys, FBI warns
South Korea: Golfzon Data Breach Victims Launch Class-Action Lawsuit
Trump White House Dips Toes Into AI Cybersecurity Regulation by Executive Order
Taiwan digital ministry admits failures over cyber institute data breach
UK businesses fear stigma of ransomware
UK data watchdog fines consultancy firm £300K for flooding people with millions of illegal texts
US Federal Insurance Regulator Confirms Data Breach Via Oracle Flaw
Why Insider Threats Deserve a Spot at the Top of Your Risk List
