[Security News] Intel Employee Data Leaked
20th August 2025
Intel Data Breach: Employee Data was Downloadable
In a recent data breach at Intel, a researcher discovered vulnerabilities in the company’s internal websites that led to the compromise of personal data for approximately 270,000 employees and suppliers. The breach was caused by flaws such as easily bypassed logins and hard-coded credentials. The exposed information was found across multiple internal sites. It included human resources and external partners, but did not include highly sensitive data like Social Security numbers or salaries. Intel has since patched the vulnerabilities. Surprisingly, the researcher who discovered the flaws responsibly disclosed the issues. However, Intel did not offer a reward through the company’s bug bounty program.
Source: Techzine, Tom’s Hardware, Cyber Press
WestJet Data Breach Passing Personal Information
Canada’s second-largest airline, WestJet, had its passengers’ personal information confirmed to be compromised following a cyberattack in June. The breach exposed names, birthdates, gender, contact information, and travel documents, but passengers’ passwords and credit or debit card details have not been exposed. WestJet is offering two years of free identity theft and credit monitoring services to affected individuals. They are also implementing additional security measures as it continues its investigation into the incident.
Source: SC Media, Daily Security News
Workday Data Breach After Salesforce Attack
A social engineering attack on a third-party CRM platform caused data breach to HR giant Workday . The attackers, identified as the ShinyHunters extortion group, gained access to business contact information, such as names, email addresses, and phone numbers. The breach is part of a larger campaign by the ShinyHunters group that has targeted other companies by tricking employees into linking malicious apps to their Salesforce accounts. Workday discovered the breach on August 6th and has since notified potentially affected customers. Thankfully, the breach did not affect customer tenants, but the stolen contact information could be used for future scams.
Source: Bleeping Computer, TechCrunch
AT&T Customers Can Claim From Data Breach
AT&T has reached a $177 million settlement for two data breaches that affected its customers. The first breach in March 2024 impacted 73 million accounts, while a second breach in July 2024 exposed the call and text records of “nearly all” cellular customers. The settlement allows affected customers to file a claim for compensation. More specifically, payouts could be up to $5,000 for the first breach and up to $2,500 for the second, with a maximum possible payout of $7,500 for those affected by both. To receive a payment, customers must submit a claim form by November 18, 2025, and provide proof of their losses. A final approval hearing is scheduled for December 3, 2025, and payments will be issued after the settlement is officially approved and all claims have been processed.
Click here to subscribe our Newsletter
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D.AMO
Click here for inquiries regarding the partner system of Penta Security
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Click here for inquiries regarding the partner system of Cloudbric