serisec

Category: data leak

  • Public Notion Pages Leaks Profile Photos and Email address of Editors

    Public Notion Pages Leaks Profile Photos and Email address of Editors Notion, a popular productivity and collaboration platform, is under significant scrutiny from the cybersecurity community. Security researchers have revealed that public Notion pages silently expose the personally identifiable information (PII) of anyone who has ever edited them. This data leak includes full names, email…

  • Smashing Security podcast #463: This AI company leaked its own code. It’s also built something terrifying

    Smashing Security podcast #463: This AI company leaked its own code. It’s also built something terrifying A hacking group claims to have broken into the flood defence system protecting Venice’s Piazza San Marco – and is offering to sell access to whoever wants it. The asking price? A frankly insulting $600. Meanwhile, Anthropic accidentally leaked…

  • Hackers Allegedly Claim Breach of Mercedes-Benz USA Legal and Customer Data

    Hackers Allegedly Claim Breach of Mercedes-Benz USA Legal and Customer Data A threat actor known as “zestix” has claimed responsibility for a significant data breach affecting Mercedes-Benz USA (MBUSA), allegedly exfiltrating 18.3 GB of sensitive legal and customer information. The threat actor posted the dataset for sale on a dark web forum, pricing the complete…

  • WhatsApp Vulnerability Exposes 3.5 Billion Users’ Phone Numbers

    WhatsApp Vulnerability Exposes 3.5 Billion Users’ Phone Numbers A critical security flaw in WhatsApp has allowed researchers to expose the phone numbers of 3.5 billion users, marking one of the most significant data leaks ever documented. This vulnerability, rooted in the app’s contact discovery feature, persisted despite warnings to Meta dating back to 2017, raising…

  • Hackers Allegedly Claim Leak of LG Source Code, SMTP, and Hardcoded Credentials

    Hackers Allegedly Claim Leak of LG Source Code, SMTP, and Hardcoded Credentials A threat actor known as “888” has purportedly dumped sensitive data stolen from electronics giant LG Electronics, raising alarms in the cybersecurity community. The breach, first spotlighted on November 16, 2025, allegedly includes source code repositories, configuration files, SQL databases, and, critically, hardcoded…

  • Hundreds of Thousands of Users’ Grok Chats Exposed in Google Search Results

    Hundreds of Thousands of Users’ Grok Chats Exposed in Google Search Results A significant data exposure has revealed hundreds of thousands of private user conversations with Elon Musk’s AI chatbot, Grok, in public search engine results. The incident, stemming from the platform’s “share” feature, has made sensitive user data freely accessible online, seemingly without the…