If the MyFitnessPal breach had occurred just a few months later, Under Armour may very well have run afoul of GDPR.
Breaches expose 50,000 student and teacher records at Leon County Schools; more districts likely affected
The records of roughly 50,000 students, parents, teachers and staff members from the Leon County Schools District in Tallahassee, Fla. were compromised in two related breach incidents involving a third-party education services provider.
The UK-based digital watchdog organization Open Rights Group is expressing concern that an age verification tool for pornography sites could potentially expose users' sensitive data, according to a report from the BBC.
Pennsylvania's attorney general is suing Uber for delaying disclosure for more than a year of a breach that exposed the personal information, such as driver's licenses, of 57 million customers and drivers.
The state revenue department now admits private data, including the names, tax identification numbers and the banking information of the payroll processors of more than 39,000 business taxpayers were compromised.
The U.S. government was very interested in getting back the cyberweapons nicked from the NSA and posted online but eventually nixed the deal because they feared being sucked into a Russian effort to cause chaos in the U.S.
The paper refused to pay the hackers' demand for a bitcoin ransom and is notifying subscribers whose information - including names, dates of births, phone numbers, and political affiliations - was affected.
White House Budget Director and acting CFPB head Mick Mulvaney won't be pursuing an extensive investigation into Equifax's security practices after hackers stole data on 145.5 million American consumers.
Out of nearly 160,000 reported cyber incidents affecting businesses in 2017, 93 percent could have been prevented by following basic security measures such as regularly updating software, blocking fake email messages, using email authentication, and training employees, a new report claims.
The company urged customers to change their passwords and their security questions, but assured them that Bell Canada had implemented "additional security authentication and identification requirements" on their accounts.
The personal identifiable information (PII) of infants, including Social Security numbers, were spotted advertised for sale on the dark web.
A malicious script was injected into the company's payment page code to sniff out credit card information.
In the first breach, which occurred in 2013, an unencrypted server without basic security like password protection and firewalls made the records of 50,000 patients accessible online.
Financial Services Superintendent Maria T. Vullo had already issued guidance to help licensed financial institutions act to protect consumers affected by the Equifax breach.
Judge Lucy Koh wrote that the Yahoo users risk future identity theft and other attacks after a series of data breaches.
A ransomware attack in mid-April resulted in the compromise of customer and employee data at Airway Oxygen, a Grand Rapids, Mich.-based provider of home medical equipment.
Anthem, the nation's largest health insurer, has agreed to a $115 million charge to settle a class action suit.
Following its delay in notifying patients affected by a data breach, CoPilot Provider Support Services will pay $130,000 as a condition of a settlement with New York's attorney general.
User data on six million subscribers to the survey website CashCrate has been compromised.
Lax privacy settings in a campus file-sharing network led to an unintentional exposure of the educational records of thousands of students at the University of Oklahoma.
An unnamed employee in the Medical Records Department mistakenly sent a spreadsheet containing data on former patients.
A Russian accused by the FBI of hacking into a number of U.S. companies is a step closer to extradition from the Czech Republic.