Cyber Breaches & Enterprise Incidents – January 2026

 

Date

Source

Org / Sector

Incident / Impact

URL
12/1/25 Reuters / BleepingComputer Coupang (E-commerce, South Korea) Police probe massive customer-data leak (33.7M impacted reported later); investigation opened. https://www.reuters.com/sustainability/boards-policy-regulation/south-korean-police-probe-massive-data-leak-coupang-2025-12-01/
12/2/25 The Register Royal Borough of Kensington & Chelsea (Local government, UK) Confirmed data was copied/exfiltrated during shared-IT cyber incident affecting multiple London councils. https://www.theregister.com/2025/12/02/london_councils_data_breach/
12/5/25 The Register ASUS supplier (Supply chain, Tech) Everest ransomware gang claimed 1TB haul from a third-party supplier; ASUS said some phone camera source code affected. https://www.theregister.com/2025/12/05/asus_supplier_hack/
12/12/25 BleepingComputer Coupang (E-commerce, South Korea) Breach tied to ex-employee who retained system access; data included names/emails/addresses/orders (33.7M customers). https://www.bleepingcomputer.com/news/security/coupang-data-breach-traced-to-ex-employee-who-retained-system-access/
12/15/25 BleepingComputer SoundCloud (Streaming, Global) Security breach via ancillary service dashboard; database with emails + public profile info accessed (~20% of users). https://www.bleepingcomputer.com/news/security/soundcloud-confirms-breach-after-member-data-stolen-vpn-access-disrupted/
12/16/25 Reuters / The Register / Computing Pornhub / Mixpanel (Adult site / Analytics) Premium-user analytics data exposed; Pornhub blamed prior Mixpanel environment incident; extortion claims surfaced. https://www.reuters.com/world/americas/hacking-group-shinyhunters-claims-theft-data-users-leading-sex-site-pornhub-2025-12-16/
12/16/25 The Register SoundCloud (Streaming, Global) Breach confirmed; exposure said to affect ~20% of users (per The Register coverage). https://www.theregister.com/2025/12/16/trio_of_breaches/
12/17/25 BleepingComputer France Ministry of the Interior (Government, FR) Arrest tied to cyberattack on internal email servers earlier in December; investigation ongoing. https://www.bleepingcomputer.com/news/security/france-arrests-suspect-tied-to-cyberattack-on-interior-ministry/
12/18/25 TechCrunch / Computing DXS International (Health tech supplier to NHS England, UK) Cyber incident on office servers discovered Dec 14; regulators informed; ransomware group claimed theft (reporting). https://techcrunch.com/2025/12/18/tech-provider-for-nhs-england-confirms-data-breach/
12/19/25 Computing DXS International (Health tech supplier to NHS, UK) Confirmed data security breach affecting office servers; ICO investigating; clinical services reportedly unaffected. https://www.computing.co.uk/news/2025/security/nhs-supplier-dxs-confirms-data-security-breach
12/20/25 BleepingComputer Conde Nast / WIRED (Media, US) Threat actor ‘Lovely’ leaked database (~2.3M records) after alleged vulnerability dispute; subscriber data exposed. https://www.bleepingcomputer.com/news/security/hacker-claims-to-leak-wired-database-with-23-million-records/
12/23/25 The Register Nissan (Automotive, JP) ~21K customers affected after unauthorized access to Red Hat-managed server; personal data leaked (no cards). https://www.theregister.com/2025/12/23/21k_nissan_customers_data_stolen/
12/25/25 Reuters Coupang (E-commerce, South Korea) Company said leaked customer information had been deleted; apology and remediation updates. https://www.reuters.com/sustainability/boards-policy-regulation/coupang-says-all-leaked-customer-information-has-been-deleted-2025-12-25/
12/29/25 The Register Conde Nast / WIRED (Media, US) Extortion group Lovely published subscriber emails/addresses; claimed far larger dataset held. https://www.theregister.com/2025/12/29/wired_hack_subscriber_info_leaked/
12/31/25 The Register European Space Agency (Aerospace, EU) Criminals claimed ~200GB stolen from external ESA servers (docs/credentials/source code alleged); ESA investigating. https://www.theregister.com/2025/12/31/european_space_agency_hacked/
1/6/26 The Register Global-e / Ledger customers (E-commerce partner / Crypto hardware) Ledger said name/contact + order details exposed via e-commerce partner Global-e; no crypto secrets impacted. https://www.theregister.com/2026/01/06/ledger_globale_breach/
1/7/26 Reuters ASML (Semiconductor equipment, NL) Company said alleged BreachForums ‘hack’ claims were unfounded; investigation found no ASML data exposed. https://www.reuters.com/business/asml-says-social-media-hacking-claims-are-untrue-2026-01-07/
1/8/26 Computing Westminster / RBKC / Hammersmith & Fulham (Local government, UK) Hundreds of thousands of residents data may have been stolen in shared-IT cyberattack (Dec 1 incident). https://www.computing.co.uk/news/2026/security/data-stolen-in-london-council-cyber-attack
1/10/26 BleepingComputer BreachForums (Cybercrime forum) User database leaked exposing ~324k accounts (emails/usernames/hashed passwords), per reporting and HIBP. https://www.bleepingcomputer.com/news/security/breachforums-hacking-forum-database-leaked-exposing-324-000-accounts/
1/14/26 The Register Eurail/Interrail (Travel, EU) Breach potentially exposed passports and personal details (names, DOB, addresses, passport numbers, etc.). https://www.theregister.com/2026/01/14/eurail_breach/
1/12/26 TechCrunch Betterment (Fintech, US) Hackers accessed personal info after compromising systems; email platform abused to send crypto scam notifications. https://techcrunch.com/2026/01/12/fintech-firm-betterment-confirms-data-breach-after-hackers-send-fake-crypto-scam-notification-to-users/
1/14/26 BleepingComputer Kyowon (Education publishing, South Korea) Company confirmed data theft in ransomware attack. https://www.bleepingcomputer.com/news/security/south-korean-giant-kyowon-confirms-data-theft-in-ransomware-attack/
1/22/26 BleepingComputer Fortinet FortiGate devices (Network security) Automated attacks create rogue accounts and steal firewall configurations (active campaign reported by Arctic Wolf). https://www.bleepingcomputer.com/news/security/hackers-breach-fortinet-fortigate-devices-steal-firewall-configs/
1/22/26 TechCrunch Under Armour (Retail/fitness, US) Company investigating claims after 72M customer records posted online; data reportedly taken in Nov breach. https://techcrunch.com/2026/01/22/under-armour-says-its-aware-of-data-breach-claims-after-72m-customer-records-were-posted-online/
1/23/26 BleepingComputer Crunchbase + broader SSO fishing campaign (SaaS / Data broker) Crunchbase confirmed documents exfiltrated; ShinyHunters claimed fishing-based SSO takeovers affecting multiple firms. https://www.bleepingcomputer.com/news/security/shinyhunters-claim-to-be-behind-sso-account-data-theft-attacks/
1/23/26 The Register Crunchbase / Betterment / SoundCloud (SaaS) ShinyHunters claimed Okta SSO code vishing to access Crunchbase + Betterment; SoundCloud data publication claim reviewed. https://www.theregister.com/2026/01/23/shinyhunters_claims_okta_customer_breaches/
1/26/26 Reuters Nike (Retail, US) Nike investigating potential breach after WorldLeaks claimed to have leaked ~1.4TB of internal data. https://www.reuters.com/sustainability/boards-policy-regulation/nike-says-it-is-investigating-possible-data-breach-2026-01-26/
1/26/26 The Register Nike (Retail, US) WorldLeaks claimed 1.4TB stolen; Nike said it is probing possible breach and posted samples were shared. https://www.theregister.com/2026/01/26/data_thieves_claim_nike_data_haul/
1/5/26 Computing Ingram Micro (Tech distributor, US/global) Company confirmed July 2025 ransomware incident affected 42,521 employees/applicants; notification letters sent in Jan 2026. https://www.computing.co.uk/news/2026/security/ingram-micro-breach-affects-more-than-42-000

See how we can build your digital capability,
call us on +44(0)845 226 3351 or send us an email…

    Read more