Cybernews researchers discovered 24 billion exposed records including usernames, passwords, and URLs from infostealer malware, Telegram channels, and breach compilations.

From a massive DOGE data breach and the hacking of critical energy and water systems to the hack of an FBI surveillance system, here are the most damaging security incidents and data breaches of 2026.

Booking a train ticket is usually something most people don't think twice about. Now it could come with real privacy risks after a reported data exposure tied to Amtrak. A newly surfaced dataset linked to the company has appeared on Have I Been Pwned, a ...

Forbes contributors publish independent expert analyses and insights. Digital forensics, AI, deepfakes, and what becomes proof in court. Dartmouth College has confirmed that a three-day cyberattack in August compromised the personal information of more ...

The rise of AI and our increasing dependence on technology have left us increasingly vulnerable to data breaches. Breaches occur when hackers and other unauthorized parties fraudulently access personal information and steal data. In 2025 alone, data ...

Another major healthcare cyberattack has surfaced, and it involves a company most patients have never heard of. A health technology company that helps doctors verify insurance coverage has confirmed hackers stole personal and medical information belonging ...

Lansing Community College has reported a February 2025 data breach, its second in four years, that affected about 175,000 people.

The New South Wales government has shut down claims that it was hit by a data breach after a ransomware group leaked an alleged sample of 200GB in stolen data to the dark web. The alleged leak first appeared on Tuesday,

ADT confirmed a data breach exposing customer names, addresses, phone numbers, and partial SSNs, with millions of records reportedly affected. ADT says its home security systems were not compromised in a recent data breach, but customer information was ...

A third-party data breach occurs when malicious actors compromise a vendor, supplier, contractor, or other organization to gain access to sensitive information or systems of the victim’s customers, clients, or business partners. Third-party data breaches ...

Karen Scarfone is the principal consultant for Scarfone Cybersecurity. She provides cybersecurity publication consulting services to organizations and was formerly a senior computer scientist for the National Institute of Standards and Technology (NIST).