The Breach News

Whole Foods Supplier Hit by Cyberattack, Disrupting Operations

Incident & Breach Response, Security Operations United Natural Foods, Inc. Initiates Investigation Following IT Systems Breach Chris Riotta (@chrisriotta) • June 9, 2025 United Natural Foods boxes at Whole Foods in Cary, North Carolina, captured on April 16, 2025. (Image: PJ McDonnell/Shutterstock) United Natural Foods, Inc., recognized as the largest…

Read MoreWhole Foods Supplier Hit by Cyberattack, Disrupting Operations

Victorian Hospital Provider Faces Alleged Data Breach | Information Age

Epworth Healthcare, a private hospital group in Victoria, Australia, has reportedly been impacted by a data breach attributed to the ransomware group known as Global Group. This group has allegedly released 40 gigabytes of data purporting to be stolen from Epworth, Melbourne Private Hospital, and the Royal Melbourne Hospital, among…

Read MoreVictorian Hospital Provider Faces Alleged Data Breach | Information Age

Exploitable Backdoors in npm Packages Allow Attackers to Compromise Entire Systems

Malicious npm Packages Discovered, Posing Serious Threat to Developers Security researchers have uncovered two npm packages that exceed their purported functionality, posing a significant threat to developers. Disguised as tools for system monitoring and data synchronization, these packages harbor destructive backdoors capable of remotely erasing all files within an application.…

Read MoreExploitable Backdoors in npm Packages Allow Attackers to Compromise Entire Systems

Mirai Botnet Variant Takes Advantage of DVR Vulnerability to Form Swarm

Endpoint Security, Internet of Things Security Variant of Mirai Botnet Exploits DVR Command Injection Vulnerability, Impacting 50,000 Devices Anviksha More (AnvikshaMore) • June 9, 2025 Image: Ivan Kislitsin/Shutterstock A newly identified variant of the Mirai botnet is making headlines as it exploits a command injection vulnerability in internet-connected digital video…

Read MoreMirai Botnet Variant Takes Advantage of DVR Vulnerability to Form Swarm

A Researcher Discovered a Method to Expose Any Phone Number Associated with a Google Account

A cybersecurity researcher recently identified a vulnerability that enabled the extraction of phone numbers associated with any Google account. This information is generally private and sensitive, as confirmed by both the researcher and independent testing by 404 Media. The vulnerability has since been addressed by Google. However, at the time…

Read MoreA Researcher Discovered a Method to Expose Any Phone Number Associated with a Google Account

Data Breach: Limited Canva Creator Information Exposed Through AI Chatbot Database

A Chroma database managed by the Russian AI chatbot startup My Jedai has been found exposed online, resulting in a significant data leak that includes survey responses from over 500 Canva Creators. This compromised dataset features personal email addresses, feedback on Canva’s Creator Program, and insights into the experiences of…

Read MoreData Breach: Limited Canva Creator Information Exposed Through AI Chatbot Database

Jackson Health System Reveals Additional 5-Year Insider Data Breach – The HIPAA Journal

Jackson Health System Reports Significant Insider Data Breach In a troubling development within the healthcare sector, Jackson Health System has revealed a new insider data breach that extends over a five-year period. This breach has raised concerns about the safeguarding of sensitive patient information, a critical aspect of healthcare organizations…

Read MoreJackson Health System Reveals Additional 5-Year Insider Data Breach – The HIPAA Journal