This week’s cybersecurity recap is here! Find out what you need to know:
China was hit with its biggest data breach ever which has exposed over 4 billion records of sensitive information.
The compromised information, which includes financial information, ID numbers, birthdates, phone numbers, and addresses, as well as WeChat and AliPay details, was being stored in a public database with no password protection. Cybernews and cybersecurity researcher Bob Dyachenko discovered the database and said, “the sheer volume and diversity of data types in this leak suggests that this was likely a centralized aggregation point, potentially maintained for surveillance, profiling, or data enrichment purposes.”
(–Source: Tom’s Guide on MSN
Read More: More than 4 billion user records exposed in biggest data leak ever — everything you need to know )
Jackson Health System patients in Miami, Florida have had their personal information compromised in a breach that began in 2020 and lasted until May of this year.
This personal data was accessed by a Jackson Health System employee who was using the information to promote a personal healthcare business, and includes names, birthdates, medical records and clinical details. The hospital system confirmed that the employee who accessed the data was “immediately terminated.”
(–Source: Miami Herald on MSN
Read More: Data breach of personal patient info ends in firing of Miami hospital employee )
Scammers have begun taking advantage of Google’s popularity by mimicking popular Google tools such as Google Calendar and Google Meet to send fake calendar invites and meeting links to users in an attempt to defraud information.
Gerald Kasulis with Nord Security said, “This is not Google’s fault. It’s just cybercriminals going after the platform we trust.”
(–Source: ABC 7 Chicago on MSN
Read More: Scammers mimic Google invites with phishing links to deceive and defraud, cybersecurity experts warn )
Unauthorized access to the Texas Department of Transportation’s Crash Records Information System (CRIS) exposed 300,000 crash records in May of this year.
Compromised login information was used by the attacker to improperly access and download the crash reports. The incident was quickly detected by internal monitoring systems and flagged. As soon as the attack was discovered, the compromised account was blocked to prevent further access.
Information stolen during this incident may include full names, addresses, ID, license plate and insurance policy numbers, as well as details of crashes and injuries.
(–Source: Daily Security Review
Read More: Texas Dept. of Transportation Breach Exposes 300,000 Crash Records in May 2025 – Security Spotlight )
More than 86 million AT&T customers have had their information leaked in a massive data breach on the popular carrier. This data was reportedly accessed after hackers gained access to accounts without multi-factor authentication.
The stolen information, which is now reportedly fully decrypted and uploaded to a Russian cybercrime forum, includes information such as full names, birthdates, contact information, physical addresses, as well as an estimated 44 million+ Social Security Numbers.
(–Source: New York Post on MSN
Read More: Major data breach exposes 86M AT&T customer records, including social security numbers — here’s how to know if you were affected )
Major grocery store and pharmacy distributor, United Natural Foods (UNFI) experienced a security breach that has disrupted operations.
The company detected unauthorized activity on some of its IT systems on June 5th and quickly launched its incident response plan to mitigate the attack. This plan included proactively taking some of its systems online, causing fulfillment and distribution of customer orders to be temporarily impacted.
The food giant is currently working with third-party security experts to “assess, mitigate, and remediate the incident.”
(–Source: Infosecurity Magazine
Read More: Wholesale Food Giant UNFI Admits Security Breach – Infosecurity Magazine )
