notable events -data breaches
John Edwards resigned as UK Information Commissioner after an independent workplace investigation found a case to answer over conduct he described as poor judgment and inappropriate humour. Commissioner since January 2022, his exit marked the first such resignation in the data-protection regulator's 40-year history.
Cisco agreed to acquire WideField Security, an identity and session-intelligence startup, to extend Splunk's Agentic SOC with credential, authentication, and AI-agent risk monitoring. It marked Cisco's third cybersecurity acquisition of 2026, following Galileo and Astrix Security, as enterprises confront non-human and autonomous-workload identity threats.
A Human Rights Watch report found Bulgaria licensed surveillance-firm Circles to export phone-interception tools between 2018 and 2023 to governments including Azerbaijan, Bahrain, the UAE, and Serbia. The systems, including SS7-based voice interception and real-time phone geolocation, drew calls for tighter EU export-control enforcement.
A breach at a Texas Parks and Wildlife Department licensing-system vendor exposed personal data of about 3.1 million people, including names, Social Security numbers, driver's license numbers, passport and state-ID numbers, and dates of birth. The state attorney general disclosed the incident.
International law enforcement, coordinated under Operation Endgame, seized 106 servers and cleaned nearly 15,000 SocGholish-infected websites, disrupting the malware-delivery botnet tied to Russia's Evil Corp. SocGholish used fake browser-update lures to drop loaders that enabled ransomware intrusions, making it a key initial-access pipeline.
Accenture agreed to buy a majority stake in OT-security leader Dragos plus all of attack-surface firm runZero and firmware-security vendor NetRise, in deals totaling $4.18 billion. The acquisitions build Accenture's industrial and critical-infrastructure cybersecurity practice as enterprises face mounting OT and supply-chain threats.
Britain's Information Commissioner's Office brought criminal charges against a former London Clinic employee for unlawfully accessing the Princess of Wales's medical records after her 2024 surgery and attempting to sell them. The worker, fired after an internal probe, faces an unlimited fine under data-protection law.
A hijacked contributor account published malicious versions of 144 @mastra npm packages, including @mastra/core at 918,000 weekly downloads. Each added a dependency on easy-day-js, a cloned date library that fetched a cryptocurrency-stealing trojan. Snyk and Orca attributed the tradecraft to North Korea's BlueNoroff.
A credential-harvesting campaign dubbed FortiBleed compiled login credentials for 75,000 Fortinet FortiGate firewalls and SSL VPN gateways across 194 countries. Attackers replayed prior breach dumps and infostealer logs and cracked intercepted VPN hashes via 1.16 billion login attempts. Exposed organizations included Chevron, Samsung, and Toyota.
The Council of the European Union approved Ukraine's inclusion in the EU Cybersecurity Reserve, letting Kyiv activate ENISA-managed incident-response services from vetted private providers during major cyberattacks. Established under the Cyber Solidarity Act, the reserve had previously extended only to Moldova in 2024.
At least 15 malicious plugins on the JetBrains Marketplace were built to steal AI API keys from developers, harvesting credentials for services such as OpenAI and Anthropic. The plugins masqueraded as legitimate developer tools, exposing a software-supply-chain risk in the IDE extension ecosystem before removal.
The UK government announced a ban on under-16s holding social media accounts, taking effect spring 2027, requiring new users to verify age via ID upload or a facial age scan. The age-verification rule drew criticism that checks are easily bypassed and introduce new data-breach risk.
India ordered a temporary block of Telegram over concerns the platform's features were exploited to facilitate cheating on a medical entrance examination. Authorities cited scammers posting fake exam questions later swapped for real ones. The block renews government pressure on the messaging service.
FulcrumSec published roughly 1.3 TB of data stolen from Danish pharmaceutical giant Novo Nordisk after a $25 million extortion demand went unpaid; a second actor had separately sought $50 million. The leak escalated a breach Novo Nordisk disclosed days earlier involving clinical-trial data.
Eastman Kodak disclosed that an unauthorized party briefly accessed limited data, after extortion group ShinyHunters claimed theft of 2.2 million records of customer personal and corporate information. ShinyHunters posted no proof samples and set a June 18 leak deadline. Kodak disputed the claimed scale.
