TechNaduAlleged OVHcloud breach claims exposure of 1.6M customers & 5.9M websites.
PII, DBs & configs potentially impacted - but unverified.
Do you act immediately or wait for confirmation in cases like this?
BeyondMachines 
French Ministry of Education Data Breach Exposes 243,000 Staff Records
The French Ministry of National Education reports a data breach affecting 243,000 individuals after an attacker stole personal records from the COMPAS HR system. The stolen data, including names and addresses, has been partially leaked online, prompting the ministry to suspend the system and involve national cybersecurity authorities.
****
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/french-ministry-of-education-data-breach-exposes-243000-staff-records-h-f-c-t-6/gD2P6Ple2L
French Ministry of Education Data Breach Exposes 243,000 Staff Records
The French Ministry of National Education reports a data breach affecting 243,000 individuals after an attacker stole personal records from the COMPAS HR system. The stolen data, including names and addresses, has been partially leaked online, prompting the ministry to suspend the system and involve national cybersecurity authorities.
HackerOne breach (via Navia):
• BOLA exploited
• Employee PII exposed
• High phishing risk
Third-party risk remains critical.
How are you mitigating it?
Follow @technadu
HackerWorkspaceTeamPCP software supply chain attack spreads to LiteLLM | ReversingLabs
https://www.reversinglabs.com/blog/teampcp-supply-chain-attack-spreads
Short summary: https://hackerworkspace.com/article/teampcp-software-supply-chain-attack-spreads-to-litellm-reversinglabs
Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens
Short summary: https://hackerworkspace.com/article/popular-litellm-pypi-package-backdoored-to-steal-credentials-auth-tokens
Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of devices during the attack.
jbz🔥 Crunchyroll probes breach after hacker claims to steal 6.8M users' data
「 From screenshots shared with BleepingComputer, these credentials gave access to various Crunchyroll applications, including Zendesk, Wizer, MaestroQA, Mixpanel, Google Workspace Mail, Jiro Service Management, and Slack 」
セキュリティ対策Labモリテックスチール、開発再委託先への不正アクセスで個人情報漏洩の恐れ
#セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews #DataBreach
Hackread.com📢⚠️ HackerOne, Mazda, Infinite Campus, and the Dutch Ministry have all confirmed separate data breaches, exposing employee and partner data across sectors.
Read more: https://hackread.com/hackerone-mazda-infinite-campus-dutch-ministry-data-breaches/
We scanned 900 MCP configs on GitHub. 75% had security problems.
https://orchesis.ai/blog/mcp-scan
Short summary: https://hackerworkspace.com/article/we-scanned-900-mcp-configs-on-github-75-had-security-problems
