Data breach stories

Avatier unveils offline Identity Challenge Card as firms seek fallback access after Stryker hack exposes MFA weaknesses.

Everywhen survey shows cyber threats dominating boardroom concerns for legal, accountancy and consultancy firms, as economic worries lag far behind.

Unpatched VPN gateways are leaving organisations open to ransomware and outages, as modern Zero Trust access cuts off the exposed front door.

England's biggest councils logged more data incidents over five years, with serious referrals up 41% and some authorities blaming better reporting.

Cohesity deepens Google Cloud partnership with new AI and cyber recovery features as it lands 2026 Partner of the Year honour.

Critical Microsoft flaws double as Azure and Dynamics 365 risks surge, BeyondTrust warns organisations to prioritise identity and privilege controls.

ShareGate survey finds AI tools have surfaced sensitive data at 29% of firms, exposing a widening gap between confidence in governance and reality.

Vercel says an attack on a third-party AI tool let hackers hijack a staff Google Workspace account and reach internal systems.

Survey finds most enterprises are struggling to control AI agents, with hidden systems, data exposure and weak decommissioning processes raising risk.

UK firms race ahead with Microsoft Copilot, but ShareGate survey finds AI tools are exposing sensitive data and exposing governance gaps.

Anthropic's Mythos spots corporate network attacks in hours, while security experts warn unmanaged AI agents are becoming a critical enterprise risk.

ReliaQuest says suspected former Black Basta operators are bombarding staff with emails and posing as IT support in Microsoft Teams to reach senior executives.

Spitfire Network Services unveils a live cyber attack map after its honeypot logged 71,793 probes in 24 hours, spotlighting rising business risk.

Talion says its award win reflects a mid-market cybersecurity shift towards resilience, accountability and clearer decision-making under pressure.

Study finds UK telecom firms exposing security-critical server data as Europe-wide analysis flags widespread certificate failures and critical asset weaknesses.

UK boards still see cybersecurity as a top risk, but a five-year flat reading suggests awareness has not translated into stronger oversight.

Booking.com tells some customers to watch for phishing after suspicious activity exposed reservation details, contact data and messages linked to bookings.

Certes says v7 extends quantum-safe data protection to edge systems, letting organisations secure hybrid workloads without application rewrites.

Paper records remain a stubborn weak spot for UK organisations, with 11,141 breach reports filed to the Information Commissioner's Office over five years.

Identity failures are now the main way cyber attackers breach firms, with experts warning that non-human credentials are widening the risk.