Lidl Data Breach Affects Customers in Germany, Belgium, and the Netherlands

lidl data breach

Lidl Data Breach Affects Customers in Germany, Belgium, and the Netherlands

Lidl has disclosed a data breach affecting online customers in Germany, Belgium, and the Netherlands. The incident resulted from a cyberattack on an external IT service provider, compromising personal details like names, emails, phone numbers, and birth dates. Lidl confirmed that payment data, billing addresses, and core systems remain unaffected and secure. While there is no evidence of data misuse, customers are urged to watch out for potential phishing attempts.

Source: SC Media

 

KDDI Data Breach Affects Over 12M

Japanese telecommunications giant KDDI revealed a massive data breach affecting over 12 million people. Attackers exploited a zero-day vulnerability in third-party software on May 16, 2026, compromising an email platform used by five domestic ISPs. The breach exposed approximately 12.23 million email addresses and 7.62 million passwords. KDDI has since blocked access, patched the vulnerability, deployed EDR software, and initiated mandatory password resets for affected users.

Source: Bleeping Computer

 

AssuranceAmerica Data Breach Exposes 6.9M Drivers’ Information

American insurance company AssuranceAmerica has disclosed a data breach impacting nearly 7 million drivers after attackers gained access to its systems earlier this year. A subsequent internal investigation revealed that an unauthorized third party compromised the network and stole files containing the personal information. The exposed data includes customer names, contact details, automobile insurance policies, driver’s license numbers, and claims-related information.

Source: Bleeping Computer

 

Penta Security Named Industry Pioneers at IFIP EBISION 2026

Penta Security announced that it received the “Industry Pioneer Award” at the 2nd International Symposium on E-Business Information Systems Evolution (EBISION 2026), hosted by IFIP WG 8.4. The award recognizes companies driving technological innovation in next-generation ICT fields. Penta Security was selected for its nearly three-decade track record in enterprise and public cloud security.

Source: EIN Presswire

 

Vibe Coded, Over-Engineered Malware Caught

A threat actor utilized an AI-generated, “vibe-coded” PowerShell script during an Active Directory network intrusion. Created by prompting an LLM in plain language, the script was heavily over-engineered, leaving distinct AI fingerprints. Because these custom tools are entirely unique, traditional signature-based antivirus defenses are ineffective. However, the overall attack relied on familiar tactics, emphasizing the critical need for behavioral analytics

Source: Infosecurity Magazine


 

Click here to subscribe our Newsletter