July 22, 2025 – Gatineau, Quebec PowerSchool has committed to take steps to ensure that the education technology software company’s security measures are appropriately strengthened following a cyberattack that impacted millions of Canadian students, parents, and educators. The commitments follow an engagement with the Office of the Privacy Commissioner of Canada to ensure that PowerSchool was…
Category: Subcontractor
Louis Vuitton hit by data breach in Türkiye, over 140,000 users exposed; UK customers also affected (1)
[Google machine translation of notice on government site:] Public Announcement (Data Breach Notification) – Louis Vuitton Çantacılık Ticaret Anonim Şirketi As is known, Article 12, paragraph (5) of the Law on the Protection of Personal Data No. 6698, titled “Obligations regarding data security,” stipulates that “If processed personal data is obtained by others through illegal…
Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
HHS added ten listings to its public leak site today, all of which are part of the Integrated Oncology Network (“ION”). See updates to 22 listings. According to its substitute notice, on May 9, ION concluded an investigation of a phishing incident that occurred between December 13 and December 16, 2024. The incident resulted in…
Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
Ian Cheng reports: IT vendor Ezynetic has been fined $17,500 for failing to protect its clients’ data, which resulted in more than 190,000 individuals’ personal data being stolen and put for sale on the Dark Web. Ezynetic had failed to put in place reasonable security arrangements to protect the personal data in its possession or…
Brazil’s central bank service provider hacked, $140M stolen
Do you need yet another reminder of the insider threat? Today’s example is from Brazil and involves an employee of a bank’s software vendor. CoinTelegraph reports: C&M Software, the service provider that connects Brazil’s Central Bank to local banks and other financial institutions, was hacked on Wednesday, leading to 800 million Brazilian reais ($140 million),…
Kelly Benefits updates its 2024 data breach report: impacts 550,000 customers
Bill Toulas reports: Kelly & Associates Insurance Group (dba Kelly Benefits) is informing more than half a million people of a data breach that compromised their personal information. The Maryland-based health and life insurance agency has issued an update on a security incident it suffered last year between December 12-17, when unauthorized actors breached its IT…