Latest data breach publications

We think of data breaches as a result of hackers battling an organisation’s defence systems for hours or days, frantically typing in reams of code in order to gain access to a database. The truth is, it’s often not like that at all. Criminals are lazy. They won’t fight tooth and nail to get into a target if they can sneak in elsewhere, and oftentimes, the job is actually made quite easy for them.

Nine million easyJet passengers have had their travel details accessed by hackers, the airline has announced.

The Luton-based carrier said the figure includes 2,208 customers who had their credit card details exposed.

It insisted there is “no evidence that any personal information of any nature has been misused” due to the cyber attack

Virgin Media has apologised after a data breach left the personal details of around 900,000 customers unsecured and accessible. The company said that the breach occurred after one of its marketing databases was “incorrectly configured” which allowed unauthorised access. It assured those affected by the breach that the database “did not include any passwords or financial details” but said it contained information such as names, home and email addresses, and phone numbers.

Personal information belonging to customers of companies working with French retail consultancy Aliznet, including 2.5 million customers of cosmetic and beauty giant Yves Rocher, has been exposed in a data leak.

Aliznet has previously served IBM, Salesforce, Sephora, Louboutin and Inwi, although it is understood the most sensitive data exposed belongs to Canadian customers of Yves Rocher.

The former AWS employee who allegedly hacked Capital One bank in July has been accused of breaching the bank’s cloud servers to mine cryptocurrency.

Paige Thompson – who went by the online moniker “erratic” – was indicted yesterday for stealing data from Capital One and 30 other entities, and has been charged with wire fraud, and computer fraud and abuse, according to Seattle court documents.