Friday , July 10 2026

Data Breach

Pet Insurer “Rainwalk” Exposed 158 GB PII of Humans and Pets in Data Breach

Cybersecurity researcher Jeremiah Fowler found an unprotected database containing 158 GB of sensitive data, including pet insurance claims, veterinary bills, and customer communications with personal details like names, addresses, phone numbers, and partial credit card numbers. The exposed database lacked password protection and encryption, containing 85,361 files and 158 GB …

Read More »

US based Archer Health Exposed 23 GB patient health data

Archer Health

Archer Health, a US provider of in-home and palliative care, left an unsecured database online, exposing sensitive personal and health information to anyone who could find it, experts say. Cybersecurity researcher Jeremiah Fowler alerted WebsitePlanet after discovering the database and assisting in securing it. Fowler discovered an unprotected database with …

Read More »

Auto Insurance Platform Exposed Over 5 Million Records

Cybersecurity researcher Jeremiah Fowler discovered a large, unprotected database with sensitive insurance and vehicle information. It contained over 5.1 million files, totaling 10TB, including powers of attorney, vehicle registrations, repair invoices, and images of damaged vehicles showing license plates and VIN numbers. According to Fowler, “The publicly exposed database was …

Read More »

1.6M fitness phone call recordings exposed online

phone call

Security researcher Jeremiah Fowler discovered a database containing sensitive information from gym customers and staff, including names, financial details, and possible phone call, left unencrypted and unprotected. Jeremiah Fowler claims he discovered the wide-open AWS repository managed by HelloGym in late July. The database was open for a week, and …

Read More »

Palo Alto Networks data breach exposes customer info via Salesforce Instances

Salesforce

Palo Alto Networks suffered a data breach that exposed customer data and support cases after attackers abused compromised OAuth tokens from the Salesloft Drift breach to access its Salesforce instance. The company states that it was one of hundreds of companies affected by a supply-chain attack disclosed last week, in …

Read More »

“SikkahBot” Malware targets “bKash” “Nagad” “MYGP” “DBBL” with banking users in Bangladesh

SikkahBot

A new Android malware called SikkahBot is targeting students in Bangladesh by pretending to be official apps from the Bangladesh Education Board. Cyble Research and Intelligence Labs (CRIL) found that this malware has been active since July 2024. According to CRIL, the SikkahBot malware is distributed through shortened URLs, including …

Read More »

Storm-0501 Deletes Data and Backups Post-Exfiltration on Azure in Hybrid Cloud Attacks

Storm-0501

Storm-0501 has erased data and backups after stealing information from a victim’s Microsoft Azure environment in a new cloud based ransomware attack. Microsoft Threat Intelligence recently provided details of the tactics deployed by the actor tracked as Storm-0501 in a blog published on August 27. Sherrod DeGrippo, director of Microsoft …

Read More »