Steve Dustcircle 🌹Jan 31

#PaneraBread #DataBreach

What Happened
In January 2026, PANERA BREAD suffered a data breach that exposed 14M records. After an attempted #extortion failed, the attackers published the data publicly, which included 5.1M unique #emailaddresses along with associated account information such as names, #phonenumbers and physical #addresses. Panera Bread subsequently confirmed that "the #data involved is contact information" and that authorities were notified.

https://haveibeenpwned.com/Breach/PaneraBread

Have I Been Pwned: Panera Bread Data Breach

In January 2026, Panera Bread suffered a data breach that exposed 14M records. After an attempted extortion failed, the attackers published the data publicly, which included 5.1M unique email addresses along with associated account information such as names, phone numbers and physical addresses. Panera Bread subsequently confirmed that "the data involved is contact information" and that authorities were notified.

Have I Been Pwned
Steve Dustcircle 🌹Jan 27

#SoundCloud #DataBreach

In December 2025, @soundcloudsaid announced it had discovered unauthorised activity on its platform.

The incident allowed an attacker to map publicly available SoundCloud #profiledata to #emailaddresses for approximately 20% of its users.

The impacted data included 30M unique email addresses, names, #usernames, avatars, follower and following counts and, in some cases, the user’s country.

https://haveibeenpwned.com/Breach/SoundCloud

Have I Been Pwned: SoundCloud Data Breach

In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform. The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users. The impacted data included 30M unique email addresses, names, usernames, avatars, follower and following counts and, in some cases, the user’s country. The attackers later attempted to extort SoundCloud before publicly releasing the data the following month.

Have I Been Pwned
eicker.news ᳇ tech newsJan 11
A #databreach reportedly exposed the personal information of 17.5 million #Instagram users, including #usernames, #emailaddresses, and #phonenumbers. The leaked data, available for sale on the dark web, could lead to #phishing attempts or #accounttakeovers. https://www.engadget.com/cybersecurity/an-instagram-data-breach-reportedly-exposed-the-personal-info-of-175-million-users-192105616.html?eicker.news #tech #media #news
Instagram says accounts 'are secure' after wave of suspicious password reset requests

The leak may be responsible for Instagram users receiving plenty of emails requesting a password reset.

Engadget
Steve Dustcircle 🌹Jul 29, 2025

#Lovense #sextoy app flaw leaks #private user #emailaddresses

https://www.bleepingcomputer.com/news/security/lovense-sex-toy-app-flaw-leaks-private-user-email-addresses/

Lovense sex toy app flaw leaks private user email addresses

The connected sex toy platform Lovense is vulnerable to a zero-day flaw that allows an attacker to get access to a member's email address simply by knowing their username, putting them at risk of doxxing and harassment.

BleepingComputer
Rene RobichaudDec 3, 2024

North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
https://thehackernews.com/2024/12/north-korean-kimsuky-hackers-use.html

#Infosec #Security #Cybersecurity #CeptBiro #NorthKorean #KimsukyHackers #Russian #EmailAddresses #CredentialTheftAttacks

North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks

Kimsuky hackers use Russian email addresses and fake cloud storage alerts to steal user credentials in new phishing campaign.

The Hacker News
beSpacificOct 31, 2023
#Hackers Accessed 632,000 #EmailAddresses at US Justice, Defense Departments #DOJ #DoD. Federal report gives new details on scope of #MOVEit attack. Email addresses, links to surveys among #compromised #data https://www.bloomberg.com/news/articles/2023-10-30/hackers-accessed-632-000-email-addresses-at-defense-doj#xj4y7vzkg
MOVEit Hackers Accessed 632,000 Email Addresses at Defense, DOJ

A Russian-speaking hacking group obtained access to the email addresses of about 632,000 US federal employees at the departments of Defense and Justice as part of the sprawling MOVEit hack last summer, according to a report on the wide-ranging attack obtained through a Freedom of Information Act request.

Bloomberg
Marcus "MajorLinux" SummersJan 6, 2023

Meta must be feeling real good not being the primary focus for once...

More than 200 million Twitter users’ email addresses leaked by hackers https://www.theverge.com/2023/1/6/23542038/twitter-hack-200-million-email-addresses-usernames-affected

#Twitter #EmailAddresses #Leak #SecurityBreach #InfoSec #TechNews

More than 200 million Twitter users’ email addresses leaked by hackers

Hackers have posted a database containing the email addresses and usernames of more than 200 million Twitter users online. The data seems to be traced back to a 2021 breach in Twitter’s security systems.

The Verge
Ebano News NetworkMay 27, 2022
Claim Journal News: Twitter to Pay $150M Penalty over Privacy of Users’ Data https://www.claimsjournal.com/news/national/2022/05/27/310691.htm #FederalTradeCommission #emailaddresses #NationalNews #phonenumbers #onlineads #penalty #privacy #twitter
Twitter to Pay $150M Penalty over Privacy of Users' Data

WASHINGTON (AP) -- Twitter will pay a $150 million penalty and put in new safeguards to settle federal regulators' allegations that the social platform

Claims Journal
ITSEC NewsFeb 11, 2020
Estée Lauder Exposes 440M Records, with Email Addresses, Network Info - Middleware data was exposed, which can create a secondary path for malware through which applicati... more: https://threatpost.com/estee-lauder-440m-records-email-network-info/152789/ #networkinformation #440millionrecords #misconfiguration #customerrecords #emailaddresses #cloudsecurity #clouddatabase #dataexposure #websecurity #esteelauder #databreach #middleware #breach
Estée Lauder Exposes 440M Records, with Email Addresses, Network Info

Middleware data was exposed, which can create a secondary path for malware through which applications and data can be compromised.

Threatpost - English - Global - threatpost.com