Multiple Italian Hotels (via booking platform)
August 20, 2025
•[ leak, retail ]
A massive data breach hit multiple Italian hotels in Aug 2025 through a centralized booking platform, exposing customer PII, payment card data, and stay details; no ransomware encryption or disruption reported.
TPG Telecom (iiNet)
August 16, 2025
•[ leak, technology ]
TPG Telecom confirmed extraction of those contact and setup details, no financial or ID documents exposed, incident response activated, external cybersecurity teams engaged, customers being notified.
NGB 3rd Technical Surveillance Bureau (Kimsuky)
August 15, 2025
•[ hack, leak, government ]
Kimsuky, a DPRK-linked hacking group, was itself breached in Aug 2025; attackers exfiltrated and leaked internal communications, victim lists, source code, and operational tools. Attribution remains unclear but likely political/strategic in nature.
Lotte Card
August 14, 2025
•[ hack, leak, finance ]
A cyber breach in mid-August 2025 led to Lotte Cards internal systems being accessed and ~1.7 GB of files stolen. Authorities ordered consumer protection measuresincluding compensation procedures and fraud monitoringwhile investigating whether sensitive customer data was impacted.
Colt Technology Services
August 12, 2025
•[ ransomware, leak, hack ]
On August 12, 2025, Colt Technology Services experienced a cyberattack on internal support systems. The Warlock ransomware group stole and leaked up to 1 million documents, including employee salary information, customer contracts, network designs, and internal emails. Colt reported that customer-facing portals such as Colt Online and Voice API were taken offline proactively as a containment measure, not because of attacker disruption or encryption.
Government of Pakistan
August 9, 2025
•[ leak, government ]
A leak of sensitive personal data of thousands of Pakistanis including government officials; data includes identity cards, mobile phone addresses, call logs, travel details; being sold online; probe ordered.
University of Southeastern Philippines
August 9, 2025
•[ hack, leak, education ]
Unauthorized access to student records system; ~175,000 records including student ID, name, email, enrollment status, academic monitoring records; data put up for sale; USeP responded by suspending system, migrating servers, enhancing security
Plex Inc
August 9, 2025
•[ hack, leak, technology ]
Plex reported an intrusion into one database leading to theft of a subset of customer authentication data (emails, usernames, securely hashed passwords). Plex urged password resets, recommended signing out all devices, and enabling 2FA; no credit-card data was affected.
MedicSolution
August 9, 2025
•[ ransomware, leak, malware ]
KillSec claimed ransomware attack against Brazilian healthcare IT vendor MedicSolution, disrupting operations and threatening a data leak unless negotiations commence; broader impact under investigation.
Pakistan Petroleum Limited (PPL)
August 6, 2025
•[ ransomware, leak, malware ]
PPLs servers and backups were encrypted and disabled by Blue Locker ransomware; IT and financial operations were disrupted for days; a ransom note threatened data leaks; NCERT issued high alert advisory to national institutions
Public Broadcasting Service (PBS)
August 4, 2025
•[ leak, technology ]
BleedingComputer confirmed a file posted on Discord with JSON records of 3,997 PBS employees and affiliates came from PBSs MyPBS.org internal service, and PBS confirmed the datas authenticity
Qilin ransomware group
July 31, 2025
•[ ransomware, hack, leak ]
Compromise of Qilins affiliate panel by rival actors enabled access to internal systems and stolen victim files.
Air France/ KLM
July 28, 2025
•[ leak ]
In August 2025, KLM confirmed that a third-party customer service system it used had been breached, exposing passenger data. The stolen information included names, contact details, and travel information of customers, though no internal KLM operational or financial data was reported compromised. The airline did not disclose how many individuals were affected, but emphasized that flight operations were not disrupted.
Harbor Behavioral Health
July 25, 2025
•[ leak, healthcare ]
Harbor reported that suspicious activity was identified on Aug 1, 2025; investigation determined an unauthorized party accessed and took files from the network between late July and Aug 1. Notifications were issued Sept 30; no encryption or operational disruption reported.
Harbor (Ohio mental health and substance use provider)
July 25, 2025
•[ leak, healthcare ]
An unauthorized actor accessed Harbors network between July 25 and August 1, 2025, and exfiltrated files containing patient, employee, and board member information. The organization disclosed the breach on September 30, 2025.
Hello Cake
July 25, 2025
•[ leak, healthcare ]
In July 2025, the sexual healthcare product maker Hello Cake suffered a data breach. The data was subsequently posted on a public hacking forum and included 23k unique email addresses along with names, phone numbers, physical addresses, dates of birth and purchases.
Pandora (jewelry retailer)
July 20, 2025
•[ leak, retail ]
Pandora confirmed that a third-party vendor holding marketing/customer data was compromised, exposing PII of around 30,000 individuals; no passwords, financial, or payment data stolen.
Survival Flight
July 17, 2025
•[ leak, healthcare ]
Survival Flight discovered a cyber incident on 07/17/2025 impacting IT systems; notice lists likely exposure of patient PHI. DataBreaches reports WorldLeaks claim (~2.8 TB) and previewed data including internal business files plus some patient/member financial/insurance info. Second Survival Flight incident in <1 year.
IMDataCenter
July 15, 2025
•[ leak, hack, misconfiguration ]
Unsecured AWS S3 bucket exposed ~38GB of records; hacker downloaded ~75GB, including ~20M emails, ~37M phone numbers, 50k SSNs/DOBs; affects multiple industries (healthcare, airlines, universities, dealerships). Bucket later secured; lawsuits pending.
Ohio Medical Alliance (Ohio Marijuana Card)
July 14, 2025
•[ leak, misconfiguration, healthcare ]
Unsecured database exposed sensitive records of an estimated 30,00040,000 Ohio medical cannabis patients. Data included names, addresses, phone numbers, email addresses, medical marijuana card numbers, state ID numbers, and medical information. The database was discovered on July 14, 2025, by a security researcher and secured on July 15; no evidence of ransomware or encryption was found.
