BreachNews | Data Breach News & Threat Intelligence

NYC Health + Hospitals, the largest public healthcare system in the United States, has disclosed a major data breach impacting at least 1.8 million individuals...

Screenshot of a cybercrime forum post alleging a breach of VentureYours, a U.S. vacation rental management platform, with claims of exposed KYC documents, customer records, booking data, and more than 25 million leaked records.

VentureYours Vacation Rental Platform Allegedly Breached With KYC And Booking Data Exposed

by m00s3c

May 18, 2026

A threat actor has allegedly breached VentureYours, a U.S.-based vacation rental management platform, and leaked what they claim is a massive archive containing customer records,...

Grafana Confirms GitHub Codebase Theft Following Credential Compromise and Extortion Attempt

by m00s3c

May 17, 2026

Grafana Labs has confirmed that an unauthorized party obtained credentials granting access to the company’s GitHub environment, allowing the attacker to reportedly download portions of...

Tux Linux penguin on dark cyber-themed background with glowing blue network lines and subtle red accents

Linux Root Exploits Keep Piling Up as Third Major Privilege Escalation Flaw Emerges in Weeks

by m00s3c

May 17, 2026

A wave of newly disclosed Linux privilege escalation vulnerabilities is raising concerns across the cybersecurity community after researchers released multiple proof-of-concept exploits capable of granting...

OpenAI Confirms Internal Breach Linked to Mini Shai-Hulud Supply-Chain Attack

by m00s3c

May 16, 2026

OpenAI has confirmed that employee devices were compromised during the recent Mini Shai-Hulud supply-chain attack that spread through hundreds of malicious npm and PyPI packages...

Screenshot of a forum post claiming ReferralRock suffered a data breach exposing more than 11 million records, including referral marketing data, customer information, and payout-related fields.

ReferralRock Allegedly Breached With 11 Million Referral and Customer Records Claimed

by m00s3c

May 15, 2026

A threat actor has claimed responsibility for an alleged breach involving ReferralRock, a U.S.-based referral marketing and ambassador platform used by businesses to manage customer...

FBI phishing warning illustration beside laptop with cyber threat alerts on dark blue background

FBI Warns Schools and Students of Harassment and Phishing Linked to Canvas Breach

by m00s3c

May 15, 2026

The FBI has issued a public warning following the recent Instructure Canvas breach, cautioning that students, parents, and educational institutions may face phishing attempts, social...

Screenshot of a forum post allegedly published by TeamPCP offering internal Mistral AI repositories and source code for sale, including references to AI infrastructure and enterprise development projects.

TeamPCP Claims Sale of Mistral AI Internal Repositories and Source Code

by m00s3c

May 15, 2026

Actors identifying themselves as TeamPCP are claiming to possess internal repositories and source code allegedly stolen from French AI company Mistral AI, marking the latest...

Screenshot of a forum post claiming AimSmarter suffered a data breach exposing business financial records, customer information, and internal employee login hashes.

AimSmarter Allegedly Breached Exposing Financial Records and Employee Login Hashes

by m00s3c

May 14, 2026

A threat actor has claimed responsibility for an alleged data breach involving UK-based technology firm AimSmarter, stating that thousands of business and internal records were...

Screenshot of a forum post claiming to leak a Virginia Department of Wildlife Resources database containing personal information and hunting or fishing license records.

Threat Actor Leaks Alleged Virginia DWR Database Containing SSNs

by m00s3c

May 13, 2026

A threat actor has leaked a dataset allegedly tied to the Virginia Department of Wildlife Resources (DWR), claiming the records contain sensitive information belonging to...

A close-up angled monitor displaying JavaScript dependency files, npm audit logs, and developer tooling interfaces with subtle red vulnerability warnings highlighted across the screen, creating a realistic software supply chain security atmosphere in a dark minimal workspace.

Mini Shai-Hulud Malware Abuses Trusted CI Pipelines in Expanding Supply-Chain Attack

by m00s3c

May 12, 2026

A rapidly expanding malware campaign dubbed Mini Shai-Hulud is compromising trusted software publishing pipelines across npm and PyPI ecosystems, infecting widely used open-source packages tied...

Newsletter signup

Get the latest data breach and security news.

Please wait...

Thank you for signing up!

BREACHNEWS.COM

Support Independent News.

Help support breach monitoring, investigations, infrastructure, and reporting.

Support the site →

NYC Health + Hospitals Says 1.8 Million Affected In Major Patient Data Breach

VentureYours Vacation Rental Platform Allegedly Breached With KYC And Booking Data Exposed

Grafana Confirms GitHub Codebase Theft Following Credential Compromise and Extortion Attempt

Linux Root Exploits Keep Piling Up as Third Major Privilege Escalation Flaw Emerges in Weeks

OpenAI Confirms Internal Breach Linked to Mini Shai-Hulud Supply-Chain Attack

ReferralRock Allegedly Breached With 11 Million Referral and Customer Records Claimed

FBI Warns Schools and Students of Harassment and Phishing Linked to Canvas Breach

TeamPCP Claims Sale of Mistral AI Internal Repositories and Source Code

AimSmarter Allegedly Breached Exposing Financial Records and Employee Login Hashes

Threat Actor Leaks Alleged Virginia DWR Database Containing SSNs