Privacy

The misconfiguration revealed more than 106 million records with U.S. citizens' private information and over 2.3 million MC2 Data subscribers' data.

Aside from failing to remove data from former users, most of the said platforms also had no safeguards for data belonging to youths ages 13 to 17, according to the Federal Trade Commission.

Hackread reports that UK-based experiential marketing and promotional staffing service provider Experience Engine had its systems purportedly breached this month by IntelBroker, which has been peddling the stolen data on BreachForums.

More than 88,000 individuals had their personal and health information stolen following a cyberattack against New Hampshire-based healthcare provider Access Sports Medicine & Orthopaedics in May, which has been claimed by the INC Ransom ransomware-as-a-service operation, SecurityWeek reports.

Lone U.S. platinum and palladium mining firm Stillwater Mining Company had information from 7,258 employees confirmed to be compromised in a cyberattack in mid-June, which the RansomHub ransomware gang took responsibility for, according to The Record, a news site by cybersecurity firm Recorded Future.

SecurityWeek reports that Apple has sought the dismissal of a lawsuit it filed against Israeli spyware maker NSO Group three years ago amid recent developments that could threaten the exposure of threat intelligence and other sensitive data required by such litigation.

Attackers were able to compromise 23andMe over five months beginning April 2023, enabling access to 5.5 million DNA Relatives profiles and details from 1.4 million users of the Family Tree feature, said the company in a disclosure in October.