Lidl Data Breach Affects Customers in Germany, Belgium, and the Netherlands
Lidl Data Breach Affects Customers in Germany, Belgium, and the Netherlands
Lidl has disclosed a data breach affecting online customers in Germany, Belgium, and the Netherlands. The incident resulted from a cyberattack on an external IT service provider, compromising personal details like names, emails, phone numbers, and birth dates. Lidl confirmed that payment data, billing addresses, and core systems remain unaffected and secure. While there is no evidence of data misuse, customers are urged to watch out for potential phishing attempts.
Source: SC Media
KDDI Data Breach Affects Over 12M
Japanese telecommunications giant KDDI revealed a massive data breach affecting over 12 million people. Attackers exploited a zero-day vulnerability in third-party software on May 16, 2026, compromising an email platform used by five domestic ISPs. The breach exposed approximately 12.23 million email addresses and 7.62 million passwords. KDDI has since blocked access, patched the vulnerability, deployed EDR software, and initiated mandatory password resets for affected users.
Source: Bleeping Computer
AssuranceAmerica Data Breach Exposes 6.9M Drivers’ Information
American insurance company AssuranceAmerica has disclosed a data breach impacting nearly 7 million drivers after attackers gained access to its systems earlier this year. A subsequent internal investigation revealed that an unauthorized third party compromised the network and stole files containing the personal information. The exposed data includes customer names, contact details, automobile insurance policies, driver’s license numbers, and claims-related information.
Source: Bleeping Computer
Penta Security Named Industry Pioneers at IFIP EBISION 2026
Penta Security announced that it received the “Industry Pioneer Award” at the 2nd International Symposium on E-Business Information Systems Evolution (EBISION 2026), hosted by IFIP WG 8.4. The award recognizes companies driving technological innovation in next-generation ICT fields. Penta Security was selected for its nearly three-decade track record in enterprise and public cloud security.
Source: EIN Presswire
Vibe Coded, Over-Engineered Malware Caught
A threat actor utilized an AI-generated, “vibe-coded” PowerShell script during an Active Directory network intrusion. Created by prompting an LLM in plain language, the script was heavily over-engineered, leaving distinct AI fingerprints. Because these custom tools are entirely unique, traditional signature-based antivirus defenses are ineffective. However, the overall attack relied on familiar tactics, emphasizing the critical need for behavioral analytics
Source: Infosecurity Magazine
Click here to subscribe our Newsletter

