Discord recently experienced a data breach related to a third-party support provider (likely Zendesk) and has now released more information about the incident.
Discord users were previously warned about the possibility of a data breach after reports that a third-party support service used by the company was breached. While the hackers are claiming to have stolen over 5.5 million records and 2.1 million ID photos, and are demanding extortion pay, Discord says the attack only compromised 70,000 IDs and refuses to pay the requested price.
(–Source: TechRadar Pro on MSN
Read More: Discord reveals more on data breach – says 70,000 government ID photos may have been leaked )
Exploitation of Microsoft SharePoint has resulted in the US Air Force investigating a possible data breach that compromised personal and health information. While not much is currently known about the scope of this breach, it is being investigated and the USAF have taken down some of its IT systems.
(–Source: CyberDaily.au
Read More: US Air Force warns of SharePoint data breach – Cyber Daily )
Northern South Wales residents who were affected by floods in 2022 have had their personal information exposed in a data breach.
The March 2025 breach exposed the information of around 3,000 NSW residents after a former contractor of the NSW Reconstruction Authority uploaded the private information to ChatGPT. The info included names, addresses, contact information, and health information of program applicants.
No evidence shows that this information has been made public; however, this possibility cannot be ruled out and the RA is actively investigating the scope of the incident with cybersecurity experts and forensic analysts.
(–Source: ABC News Australia on MSN
Read More: NSW flood victims’ personal details loaded to ChatGPT in major data breach )
The well-known ShinyHunters ransomware gang strikes yet again, this time with a cyber attack and extortion against software giant Red Hat.
Hacking group Crimson Collective posted claims of stealing 570GB of compressed data last week. This week, the group announced a partnership with another hacking group known as Scattered Lapsus$ Hunters to use ShinyHunters’ new data leak site.
Red Hat now appears on the leak site with a threat claiming the stolen information will be leaked if Red Hat does not pay their ransom demand.
(–Source: BleepingComputer
Read More: Red Hat data breach escalates as ShinyHunters joins extortion )
Over 90,000 military members, veterans, and their families had their personal information exposed after a December 2024 attack, which was discovered in June of this year, on CPAP Medical Supplies and Services, Inc.’s computer systems.
The compromised information includes names, birth dates, SSNs, patient and insurance information, and medical history including diagnoses and treatments. One year of credit and identity theft monitoring services are being offered to impacted individuals.
(–Source: San Antonio Express News on MSN
Read More: Data breach exposes personal info of 90K troops, vets and families )
A hacker group known as Scattered LAPSUS$ Hunters or UNC6040 claims to have stolen 1 billion records from Salesforce customers and is making extortion demands which Salesforce refuses to pay.
Salesforce says it will not “engage, negotiate, or pay” any extortion demands. Cybercrime group ShinyHunters claims to be planning to publicly publish the stolen data if Salesforce does not meet their demands.
(–Source: Ars Technica
Read More: Salesforce says it won’t pay extortion demand in 1 billion records breach – Ars Technica )
