Discord Data Breach Exposes Support Chats and User IDs
The Discord data breach has sparked concern after hackers accessed a third-party support vendor’s systems, stealing user information, support messages, and government ID images. While Discord’s core infrastructure remains secure, the incident highlights serious risks tied to external service providers managing user data. How the Breach Happened Discord confirmed that attackers compromised a third-party customer service platform used to manage
WestJet Data Breach Exposed Customer Passports
The WestJet data breach has placed thousands of travelers at risk after cybercriminals accessed sensitive passenger records. The Canadian airline confirmed that passport numbers and travel documents were among the exposed data. The breach has raised concerns about identity theft and placed renewed pressure on the aviation industry to strengthen its cybersecurity defenses. What Happened WestJet disclosed that an unauthorized
Postmark MCP npm Package Stole User Emails
The Postmark MCP npm package has been exposed as a malicious module that silently stole user emails. Disguised as a legitimate client, the package highlights ongoing risks in the software supply chain and raises concerns for developers relying on npm. How the Attack Happened Security researcher Kamil “kph” Piekarski discovered that the fake package was uploaded to npm on September
Boyd Gaming Data Breach Exposes 184,000 Personal Records
The Boyd Gaming data breach has become another major cybersecurity incident in the casino industry. Boyd Gaming, which operates 28 casinos across 10 U.S. states, confirmed that a recent cyberattack exposed the personal data of more than 184,000 individuals. The breach disrupted critical IT systems and forced the company to take immediate containment measures. This attack highlights how vulnerable the
SonicWall MySonicWall Breach Forces Credential Resets
The SonicWall MySonicWall breach has prompted urgent warnings from the cybersecurity vendor. SonicWall advised all customers to reset credentials and enable multi-factor authentication after attackers gained access to customer accounts. The incident highlights the growing risks tied to vendor platforms that hold sensitive client data. Breach Overview SonicWall confirmed unauthorized activity within its MySonicWall customer portal. This platform manages product
Jaguar Land Rover Data Breach Confirmed After Cyberattack
The Jaguar Land Rover data breach reveals the growing cybersecurity threats facing global automakers. The company confirmed that a recent cyberattack not only disrupted manufacturing but also compromised data. While the full scope remains unclear, the breach highlights the vulnerability of complex supply chains and the need for stronger digital defenses across the automotive sector. Cyberattack Causes Factory Shutdowns The
Workiva Data Breach Exposes Contact Data After Salesforce Attack
The Workiva data breach adds to a growing list of companies caught in the ongoing wave of Salesforce-related attacks. The SaaS provider confirmed that attackers exploited a Salesforce-connected application, leading to the exposure of customer contact details. Although Workiva’s platform itself remains uncompromised, the incident raises concerns about the growing reliance on third-party integrations and the phishing risks that follow.
Cloudflare Data Breach Exposes Salesforce Support Cases in Supply-Chain Attack
The recent Cloudflare data breach highlights the growing risks of supply-chain attacks targeting SaaS integrations. Hackers exploited Salesloft’s Drift connection with Salesforce, giving them unauthorized access to Cloudflare’s internal support system. While the company confirmed no core infrastructure was compromised, attackers exfiltrated sensitive support case data and API tokens. How the Breach Unfolded Attackers began reconnaissance on August 9, 2025,
Allianz Life Data Leak Exposes Millions in Salesforce Cyberattack
The Allianz Life data leak has put millions of customers and partners at risk after attackers breached a cloud-based CRM platform. The stolen information was later released online in what experts describe as one of the most significant Salesforce-related incidents to date. From Breach to Public Leak In mid-July 2025, Allianz Life, a major U.S. insurance provider, confirmed that a
BadCam BadUSB Attack Turns Linux Webcams Into Threats
The newly discovered BadCam BadUSB attack exposes a dangerous flaw in certain Linux-based webcams. Security researchers warn that the vulnerability could allow attackers to reprogram webcams into malicious USB devices, enabling persistent threats that survive even after system reinstallation. This finding has raised concerns over USB device trust and firmware security. How the BadCam Attack Works Security firm Eclypsium identified
